[TriLUG] don't understand salt
Joseph Mack NA3T
jmack at wm7d.net
Sat Jun 9 09:50:13 EDT 2012
On Sat, 9 Jun 2012, Aaron Joyner wrote:
> The salt does not need to be stored any more securely than
> the password hash.
hmm.
> If its not clear why, ask and I'll elaborate.
I assume if you have the salt, then you don't have to
explore the 16bit space of the salt and you're back to
rainbow tables. So it's not clear. Please elaborate.
> The standard mechanism on a linux box is to store the salt
> as part of the password hash in /etc/shadow. It's the
> first two bytes of the value in the second field of
> /etc/shadow.
got it
> See the man pages for 'shadow' and 'crypt' for more details.
read them thanks.
Joe
--
Joseph Mack NA3T EME(B,D), FM05lw North Carolina
jmack (at) wm7d (dot) net - azimuthal equidistant map
generator at http://www.wm7d.net/azproj.shtml
Homepage http://www.austintek.com/ It's GNU/Linux!
More information about the TriLUG
mailing list