On Wed, 2003-05-28 at 09:37, Burke, Thomas G. wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> passords are encrypted (normally) with a simple one-way hashing
> algorithm - the encrypting key is included in the stuff that's in the
> result.  If you install shadow passwords, the password file is
> "ghosted" to another directory, and encrypted differently (using
> libcrypt, I think)
> 


The crypt is the same (either DES, or MD5) it just moves the password
crypt to a file that is only readable by root.  Before shadow files all
the crypted passwords were just stored in /etc/passwd making it
very easy to grab the list of crypted passwords and run crack (or your
other favorite brute force tool) against it.

- andrew



> 
> 
> - -----Original Message-----
> From: admir [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, May 28, 2003 7:24 AM
> To: [EMAIL PROTECTED]
> Subject: Passwd File
> 
> 
> Hi,
> 
> I am new to linux and right now I am studying it. I read that
> password in
> the "passwd" file are noet encrepted.
> 
> I also opend it ones with pico and it was in clear text.
> 
> I tried to open it today and clear text was gone. I can only see a
> ''X" in
> password place.
> 
> What is going on? How can I get my clear text passwords back?
> 
> Greetings,
> 
> Admir
> 
> 
> 
> 
> 
> 
> - -- 
> redhat-list mailing list
> unsubscribe mailto:[EMAIL PROTECTED]
> https://www.redhat.com/mailman/listinfo/redhat-list
> 
> -----BEGIN PGP SIGNATURE-----
> Version: PGP Personal Privacy 6.5.3
> 
> iQA/AwUBPtS7n9PjBkUEZx5AEQKBOQCeOtc5UJHLlWf7YOt76H9EbuQlugAAoOwr
> oCB9yOzzzPisC2H8Kj8669Fi
> =PMRb
> -----END PGP SIGNATURE-----
> 


-- 
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]
https://www.redhat.com/mailman/listinfo/redhat-list

Reply via email to