On Sun, 28 Oct 2001, v b wrote: |). Thanx to Kingsly for pwunconv. But what do u mean |by MD5 pass? I thought MD5 was only a checksum tool |while DES is an encryption tool. Therefore one cannot |'decrypt' an MD5 word because no such thing exists. If
You cannot decrypt a DES passwd either.. because it's a one way encryption algorithm ... what you actually see stored in the passwd/shadow file is a string of spaces encrypted using your password as the *key* and not as the *data*. |u mean converting the given pass with a MD5 key and |then comparing it to the known passwd - it will work |2^64 times (which is awesome) but still that means |there are infinite other passwords that may work. I think md5 passwords can be of any length.. depends on the compiled defaults.. IIRC 256 chars is the std. ... MD5 passwords are 35 characters long and have a 12 char salt that begins with $1$ I think the salt is what makes it unique so you can't have infinite passwords that'll work. |Neway I am not aware of the usage of MD5 for |encrypting. So ne idea what technique does linux use |for encrypting pass ? Take a look at any linux /etc/[passwd|shadow] files ... IIRC from RH6.0 onwards RH has been using MD5 passwords. |I thought linux still uses DES :) I have heard abt a new technique |called IDEA but have no idea if it is used in linux or not. Thanx ! Dunno about IDEA but some machines are supposed to use BLOWFISH passwds which have a 16 character salt that begins with $2$. Kingsly _______________________________________________ linux-india-help mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/linux-india-help
