Fedora 35 Looking To Use Yescrypt For Hashing User Passwords

Written by Michael Larabel in Fedora on 9 June 2021 at 07:00 AM EDT. 14 Comments
FEDORA
Adding to the list of planned improvements for Fedora 35 is switching to make use of Yescrypt for hashing of user passwords.

Fedora developers are looking at using Yescrypt as the default hashing mode for new user passwords within /etc/shadow. While SHA256/SHA512 haven't yet been broken as common used today for Linux account password hashing, Yescrypt would beef up the security.

As explained on the Openwall project site for Yescrypt, "yescrypt is a password-based key derivation function (KDF) and password hashing scheme. It builds upon Colin Percival's scrypt... Like it or not, password authentication remains relevant (including as one of several authentication factors), password hash database leaks happen, the leaks are not always detected and fully dealt with right away, and even once they are many users' same or similar passwords reused elsewhere remain exposed. To mitigate these risks (as well as those present in other scenarios where password-based key derivation or password hashing is relevant), computationally expensive (bcrypt, PBKDF2, etc.) and more recently also memory-hard (scrypt, Argon2, etc.) password hashing schemes have been introduced. Unfortunately, at high target throughput and/or low target latency their memory usage is unreasonably low, up to the point where they're not obviously better than the much older bcrypt (considering attackers with pre-existing hardware). This is a primary drawback that yescrypt addresses. Most notable for large-scale deployments is yescrypt's optional initialization and reuse of a large lookup table, typically occupying at least tens of gigabytes of RAM and essentially forming a site-specific ROM. This limits attackers' use of pre-existing hardware such as botnet nodes. yescrypt's other changes from scrypt additionally slow down GPUs and to a lesser extent FPGAs and ASICs even when its memory usage is low and even when there's no ROM, and provide extra knobs and built-in features."

Thus a change proposal has been filed that would make use of Yescrypt for new user password hashing on the distribution. Besides Fedora, ALT Linux, Debian Testing, and Kali Linux are among other distributions already making use of Yescrypt.

So far the feedback around this change to use Yescrypt has been fairly positive and another step forward for improving security.
14 Comments
Related News
Fedora Linux 40 Cleared For Release Next Week
RPM 4.20 Approved For Fedora 41 To Advance Hands-Free Packaging
Fedora 41 Aims For More Reproducible Package Builds Thanks To A Rust Program
Fedora 41 Looks To "-O3" Optimizations For Its Python Build
FESCo Approves The Fedora 41 Switch To DNF5
Fedora 42 Change Proposal Wants To Make KDE Plasma The Default Over GNOME
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
Linus Torvalds Injects Tabs To Thwart Kconfig Parsers Not Correctly Handling Them
Linux 6.10 To Merge NTSYNC Driver For Emulating Windows NT Synchronization Primitives
Ubuntu Maker Canonical Announces New Collaboration With Qualcomm
Fedora 41 Looks To "-O3" Optimizations For Its Python Build
APT 2.9 Released: Debian's APT 3.0 To Have A New UI With Colors, Columnar Display & More
Former Nouveau Lead Developer Joins NVIDIA, Continues Working On Open-Source Driver
KDE's KWin Merges Wayland Explicit Sync Support
Gentoo Linux Now An SPI Project