[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Inappropriate authentication using {md5} or {sha} ...



At 08:36 PM 5/18/00 -0500, Frank Koenen wrote:
>#rootpw         Secret4
>#rootpw         {CRYPT}OMIpblf7N.TuI
>#rootpw         {SHA}/UL4x0SR0Xq5L9mlddZnSm3pmG1iVw==
>rootpw          {md5}JDEkTmUkaFRPOVRSMnYwYml6aE5uZjBPQlRqLw==

Seems odd that base64 of the MD5 (128bit) hash is longer
than base64 of the SHA1 (160 hash) hash.

>$cryptedpassword = unix_md5_crypt($password, $salt);

That's obviously not simple, old MD5.  Try
	use MD5;
instead of
	use Crypt::PasswdMD5;