Re: Password salt

To: debian-user@lists.debian.org
Subject: Re: Password salt
From: Alberto Fuentes <alberto.fuentes@qindel.com>
Date: Fri, 08 Jun 2012 11:15:10 +0200
Message-id: <[🔎] 4FD1C29E.1060406@qindel.com>
In-reply-to: <[🔎] 4FD1C074.1020208@gmail.com>
References: <[🔎] 4FD1BE86.1090203@gmail.com> <[🔎] 4FD1BFB3.1020001@qindel.com> <[🔎] 4FD1C074.1020208@gmail.com>

On 06/08/2012 11:05 AM, Lars Noodén wrote:

On 6/8/12 12:02 PM, Alberto Fuentes wrote:

On 06/08/2012 10:57 AM, Lars Noodén wrote:

The hashed password + salt is stored in /etc/shadow.  Where is the
actual password salt for Debian stored?

Regards,
/Lars


 From what i see, the password salt is different for each password... so
i guess its different each time a password is generated. It makes sense
since its saved along the password itself, so its more secure than
having a single salt, at no extra cost

greets!
aL


Yes, I understand that the salt is different and random for each
password, but how is it stored so that the hash can be used for
authentication?  Sorry for the dumb questions.

Regards,
/Lars


Oh, i misunderstand your question.

Well, as i understand it it, the password has 3 parts, differenced with a $.
$ the kind of hash $ salt $ hash

Reply to:

References:
- Password salt
  - From: Lars Noodén <lars.nooden@gmail.com>
- Re: Password salt
  - From: Alberto Fuentes <alberto.fuentes@qindel.com>
- Re: Password salt
  - From: Lars Noodén <lars.nooden@gmail.com>

Prev by Date: Re: Password salt
Next by Date: Re: Password salt
Previous by thread: Re: Password salt
Next by thread: Re: Password salt
Index(es):
- Date
- Thread