From 218c9ea853d8192d245ff6342cab0dd08dbd7797 Mon Sep 17 00:00:00 2001
From: provos <>
Date: Mon, 14 Apr 1997 22:26:21 +0000
Subject: [PATCH] enable blowfish per default, explanationary blurb

---
 src/etc/passwd.conf | 18 ++++++++++++------
 1 file changed, 12 insertions(+), 6 deletions(-)

diff --git a/src/etc/passwd.conf b/src/etc/passwd.conf
index caa22c36..e3cd0df7 100644
--- a/src/etc/passwd.conf
+++ b/src/etc/passwd.conf
@@ -1,19 +1,25 @@
-#	$OpenBSD: passwd.conf,v 1.5 1997/03/30 19:20:04 deraadt Exp $
+#	$OpenBSD: passwd.conf,v 1.6 1997/04/14 22:26:21 provos Exp $
 #
 # Passwd configuration file
 #
+# Possible stanzas are:
+#       'default', username or .groupname
 # Possible options are at the moment:
 #	localcipher, ypcipher
 # they can take values of
 #	old		- old unix style salt of 12bit (YP compatible)
 #	newsalt		- DES hash with salt of 64 bit
-#	md5		- MD5 hashing algorithm (FreeBSD-compat)
-#	blowfish,x	- Blowfish cipher, x is number of rounds (BEST!)
-#			  128 bit salt, 4 rounds are min, 31 max
+#	md5		- MD5 hashing algorithm
+#	blowfish,x	- Blowfish cipher, 2^x is number of rounds (BEST!)
+#			  128 bit salt, 2^4 rounds are min, 2^31 max
+#
+# EXAMPLE to give members of group .wheel blowfish passwords
+#.wheel:
+#        localcipher=blowfish,6
 
 default:
-	localcipher=old
+	localcipher=blowfish,5
 	ypcipher=old
 
 root:
-	localcipher=old
+	localcipher=blowfish,7