List Archive: gentoo-security
Note: Due to technical difficulties, the Archives are currently not up to date.
provides an alternative service for most mailing lists.c.f. bug 424647
-----BEGIN PGP SIGNED MESSAGE-----
Stuart Howard wrote :
>What method/cryptography is used to
>create the passwd hash under PAM ie. is it vunerable to rainbow type
As I've spend some time to try understanding this by looking at the
source code, I think I can give you some tips.
Fisrt of all, have a look at your /etc/shadow where the encrypted
Fields are separated by a semicolon. So in the first one you have the
username, and in the second one there is the encrypted password but
this field is again separated in three new fields by a $ sign. So the
first one (1 in this case) is the encryption algorithm used (I'll have
to dive again in pam's sources to remember which number belongs to
wich encryption scheme). The second fields (/oZtuVKk) is the salt, and
the last one (dIY/JnsPaMF47Ai9SgacZ.) is the result of the encrypted
If you're interested to know more, I think I've allready posted a few
things some months agao, so I could try to search in my old mails if
you want to.
Have a nice day.
ps: if someone tries to connect with this account, I'll ban him
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (MingW32)
-----END PGP SIGNATURE-----
email@example.com mailing list