Re: md5 default (was Re: Security trough paranoia)

To: debian-devel@lists.debian.org
Subject: Re: md5 default (was Re: Security trough paranoia)
From: Roland Bauerschmidt <rb@debian.org>
Date: Sat, 7 Apr 2001 02:26:34 +0200
Message-id: <[🔎] 20010407022634.A18204@hbg.schule.bremen.de>
Mail-followup-to: Roland Bauerschmidt <rb@debian.org>, debian-devel@lists.debian.org
In-reply-to: <[🔎] 20010406160226.B3363@vitelus.com>; from aaronl@vitelus.com on Fri, Apr 06, 2001 at 04:02:26PM -0700
References: <20010330163354.A10286@bmrb.wisc.edu> <Pine.LNX.4.30.0103301643560.5180-100000@tennyson.netexpress.net> <20010330182728.A10695@bmrb.wisc.edu> <yttelvewxjr.fsf@gilgamesh.cse.ucsc.edu> <20010331163420.B994@korn.ch> <20010401005324.C28925@alcor.net> <[🔎] 84lmplw2di.fsf@snoopy.apana.org.au> <[🔎] 20010401034755.E28925@alcor.net> <[🔎] 20010405124141.B828@kitenet.net> <[🔎] 20010406160226.B3363@vitelus.com>

Aaron Lehmann wrote:
> I'm not familiar with the typical implementations of MD5 passwords,
> but do they use some kind of salt[2]? If they don't, finding duplicate

I am pretty sure they do. Look in /etc/shadow: they are in the form
$XXXXXXXX$1$... where XXXXXXXX is the salt AFAIK.

Roland

-- 
Roland Bauerschmidt

Reply to:

References:
- Re: Security trough paranoia
  - From: Brian May <bam@debian.org>
- Re: Security trough paranoia
  - From: Matt Zimmerman <mdz@debian.org>
- md5 default (was Re: Security trough paranoia)
  - From: Joey Hess <joeyh@debian.org>
- Re: md5 default (was Re: Security trough paranoia)
  - From: Aaron Lehmann <aaronl@vitelus.com>

Prev by Date: Bug#93163: ITP: rep-xmms
Next by Date: Re: Mozilla needs new package
Previous by thread: Re: md5 default (was Re: Security trough paranoia)
Next by thread: Re: md5 default (was Re: Security trough paranoia)
Index(es):
- Date
- Thread