Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Fri, 11 Sep 2015 11:52:20 +0200
From: Frank Dittrich <frank.dittrich@...lbox.org>
To: john-dev@...ts.openwall.com
Subject: Re: auditing our use of FMT_* flags

On 09/11/2015 08:57 AM, Kai Zhao wrote:
> If there are hex-encoded substring in hash, the split() must unify the
> case ? Right ?

Jim looks for a hex encoded version of the ciphertext returned by
binary() in the ASCII ciphertext.

Assuming that this substring is long enough that a false positive can be
excluded, then either split() must unify the case and set
FMT_SPLIT_UNIFIES_CASE, or valid() must accept just one version (usually
either all upper case or all lower case), and reject all other versions
(and FMT_SPLIT_UNIFIES_CASE must not be set).

Frank

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ