[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: crypt() on OpenBSD

To: azazel@123india.com, misc@openbsd.org
Subject: Re: crypt() on OpenBSD
From: Hannah Schroeter <uk1o@rz.uni-karlsruhe.de>
Date: Tue, 27 Jul 1999 11:36:41 +0200
Mail-Followup-To: azazel@123india.com, misc@openbsd.org
References: <19990727090238.885.cpmta@c008.sfo.cp.net>

Hello!

On Tue, Jul 27, 1999 at 02:02:38AM -0700, azazel@123india.com wrote:
> [...]

> So, what do I actually put into $salt ?

To check a password, just give the *whole* encrypted password as salt.
That is supposed to work for every encryption method.

i.e. in C:
if (strcmp(crypt(what_the_user_has_input_as_password, crypted_pw), crypted_pw))
	wrong
else
	right

In perl:
if (crypt($user_input, $crypted_pw) ne $crypted_pw) {
	wrong;
} else {
	right;
}

I don't really understand why adduser uses an external binary for that
purpose, as perl is linked against the OpenBSD libc whose crypt()
function performs all non-traditional encryption methods very fine.

> [...]

Regards, Hannah.

Follow-Ups:
- Re: crypt() on OpenBSD
  - From: CyberPsychotic <mlists@gizmo.kyrnet.kg>

References:
- Re: crypt() on OpenBSD
  - From: azazel@123india.com
- Re: crypt() on OpenBSD
  - From: azazel@123india.com

Prev by Date: Re: crypt() on OpenBSD
Next by Date: Re: crypt() on OpenBSD
Prev by thread: Re: crypt() on OpenBSD
Next by thread: Re: crypt() on OpenBSD
Index(es):
- Date
- Thread