Gentoo Archives: gentoo-security

From: stian@×××××.no
To: gentoo-security@l.g.o
Subject: Re: [gentoo-security] PAM/passwd? and hash tables
Date: Tue, 15 Nov 2005 15:23:27
Message-Id: 39399.217.8.146.155.1132067697.squirrel@217.8.146.155
In Reply to: Re: [gentoo-security] PAM/passwd? and hash tables by Christophe Garault
1 > Fields are separated by a semicolon. So in the first one you have the
2 > username, and in the second one there is the encrypted password but
3 > this field is again separated in three new fields by a $ sign. So the
4 > first one (1 in this case) is the encryption algorithm used (I'll have
5
6 $1$ meens MD5 (with salt). glibc crypt() function also reflects this. If
7 the salt format doesn't match $1$xxxxxxx$ format, DES encryption is
8 assumed, which has a very weak salt.
9
10
11 Stian Skjelstad
12 --
13 gentoo-security@g.o mailing list

Replies

Subject Author
Re: [gentoo-security] PAM/passwd? and hash tables Stuart Howard <stuart.g.howard@×××××.com>