Jima wrote: > On Tue, 26 Oct 2004, Mike Miller wrote: > > Note that "ab" are the first two characters of the putatively encrypted > > output. It seems that your perl command always includes the first two > > letters of the input as the first two letters of the output: > > > *snip* > > > > That can't be right! > > Nope, it's exactly right. That's how crypt()-based authentication works, > precisely. It needs to know what salt the original password was encrypted > with, so it's the first two characters of the encrypted password. It > crypt()s the attempted password (from the authentication attempt) with the > same salt, and if the two match, the password must be the same > (theoretically). Would this explain the "$1$" string that starts all md5 password values in /etc/shadow? -- scot _______________________________________________ TCLUG Mailing List - Minneapolis/St. Paul, Minnesota Help beta test TCLUG's potential new home: http://plone.mn-linux.org Got pictures for TCLUG? Beta test http://plone.mn-linux.org/gallery tclug-list at mn-linux.org https://mailman.real-time.com/mailman/listinfo/tclug-list