Date: Wed, 24 Sep 1997 22:38:05 -0600 (MDT) From: Brandon Gillespie <brandon@roguetrader.com> To: Terry Lambert <tlambert@primenet.com> Cc: freebsd-hackers@FreeBSD.ORG Subject: Re: crypt() returning an error... Message-ID: <Pine.BSF.3.96.970924223724.8462A-100000@roguetrader.com> In-Reply-To: <199709250035.RAA04922@usr03.primenet.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Thu, 25 Sep 1997, Terry Lambert wrote: > > > > hrm, wrapper for what purpose? The code I have now crypt is actually > > simply a wrapper for whichever algorithm is used.. it looks at the initial > > token and calls another function specific to that algorithm, so all of the > > following are valid results: > > It's valid to MD5 hash a zer length string; if you make the MD5 hash > unusable for that purpose with the change, then it's broken. The > wrapper is the code that leaves the MD5 code otherwise usable for > zero lenth strings. Er, sorry, my example was bad--I was actually saying what would you do with a zero-length salt, not password... > I'm not sure that I'd disallow hashing zero lenth passwords to non-NULL > password values. It seems like a feture, to me, actually, so crypt() > might not be where you want the wrapper. Certainly, you don't want the > wrapper at the MD5 code in either case... that's all I meant to say. Ahh :) -Brandon
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.970924223724.8462A-100000>