Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Sat, 18 Aug 2012 21:33:08 +0400
From: Vladimir Vorontsov <vladimir.vorontsov@...ec.ru>
To: Solar Designer <solar@...nwall.com>
CC: john-dev@...ts.openwall.com
Subject: Re: salted raw MD5 on GPU

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Yes, : also available as salt's char.

I.e. Bitrix CMS:

$password_chars[] = ",.<>/?;:'\"[]{}\|`~!@#\$%^&*()-_+=";
...
$salt = randString($password_min_length, $password_chars);



18.08.12, 21:25, Solar Designer пишет:
> On Sat, Aug 18, 2012 at 09:17:29PM +0400, Vladimir Vorontsov
> wrote:
>> Binary (hex-encoded) salts more clearly. I.e. salt "%f\gs3;A"
>> require escaping in command line.
> 
> Well, you won't need to specify it on the command line, but if we
> don't do hex-encoding, then the characters ':' (colon), CR, and LF
> would not be allowed (as they're part of the passwd-like file
> format).  I guess ':' is a possible character in salts in your
> hashes?  If so, we do need to support hex-encoding.
> 
> Alexander
> 
> 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAlAv0dQACgkQshExP8cA6RS9BACfepNSx0kp/pt/r7FhwE60bRwe
X28An2jz1DSL5RuIMEERsiK0+KARB5uv
=Tl2X
-----END PGP SIGNATURE-----

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.