Re: etc-shadow

On Sun, Feb 22, 2015 at 10:36 PM, Matthew Miller wrote: > On Sun, Feb 22, 2015 at 11:23:45AM -0700, Chris Murphy wrote: >> Curiously, Anaconda calls authconfig to create the key, and the resulting >> shadow entry contains a 16 character salt. Whereas passwd uses an 8 >> character salt. > > Huh, th

Re: etc-shadow

On Sun, Feb 22, 2015 at 11:23:45AM -0700, Chris Murphy wrote: > Curiously, Anaconda calls authconfig to create the key, and the resulting > shadow entry contains a 16 character salt. Whereas passwd uses an 8 > character salt. Huh, that is curious. I assume we really want to be using the 16-char sa

Re: etc-shadow

On Sun, Feb 22, 2015 at 5:01 PM, Alex Regan wrote: > Do you happen to know if there's a pre-built version of John-the-Ripper or > another password testing program that's available and works with these new > passwords? I don't know that this is all that new. It's also self-describing, the /etc/sha

Re: etc-shadow

Hi, On 02/22/2015 01:23 PM, Chris Murphy wrote: On Sat, Feb 21, 2015 at 11:58 PM, Matthew Miller mailto:mat...@fedoraproject.org>> wrote: > On Sat, Feb 21, 2015 at 06:07:18PM -0700, Chris Murphy wrote: >> I read this: >> http://www.aychedee.com/2012/03/14/etc_shadow-password-hash-formats/ >>

Re: etc-shadow

On Sat, Feb 21, 2015 at 11:58 PM, Matthew Miller wrote: > On Sat, Feb 21, 2015 at 06:07:18PM -0700, Chris Murphy wrote: >> I read this: >> http://www.aychedee.com/2012/03/14/etc_shadow-password-hash-formats/ >> But Fedora doesn't have mkpasswd by default, whereas passwd seems to >> only update sha

Re: etc-shadow

On Sat, Feb 21, 2015 at 06:07:18PM -0700, Chris Murphy wrote: > I read this: > http://www.aychedee.com/2012/03/14/etc_shadow-password-hash-formats/ > But Fedora doesn't have mkpasswd by default, whereas passwd seems to > only update shadow rather than outputting to stdout. And if there's a > salt u

Re: etc-shadow

On Sat, Feb 21, 2015 at 6:32 PM, jd1008 wrote: > Why not just download > http://mirrors.kernel.org/fedora/releases/21/Everything/source/SRPMS/p/asswd-0.79.tar.bz2 > and read the source code :) > There are macros you will need to look at as well I've already looked at passwd.c before asking. --

Re: etc-shadow

On 02/21/2015 06:07 PM, Chris Murphy wrote: I'm curious about how the hash in /etc/passwd is generated. I know it's SHA512 based, since the 2nd field starts with $6$. But the characters that follow aren't a SHA512 hash. It looks like it was run through base64. I read this: http://www.aychedee.