From owner-freebsd-hackers  Tue Feb  2 16:46:20 1999
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id QAA09797
          for freebsd-hackers-outgoing; Tue, 2 Feb 1999 16:46:20 -0800 (PST)
          (envelope-from owner-freebsd-hackers@FreeBSD.ORG)
Received: from smtp01.primenet.com (smtp01.primenet.com [206.165.6.131])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id QAA09790
          for <hackers@FreeBSD.ORG>; Tue, 2 Feb 1999 16:46:14 -0800 (PST)
          (envelope-from tlambert@usr09.primenet.com)
Received: (from daemon@localhost)
	by smtp01.primenet.com (8.8.8/8.8.8) id RAA00443;
	Tue, 2 Feb 1999 17:46:08 -0700 (MST)
Received: from usr09.primenet.com(206.165.6.209)
 via SMTP by smtp01.primenet.com, id smtpd000421; Tue Feb  2 17:46:04 1999
Received: (from tlambert@localhost)
	by usr09.primenet.com (8.8.5/8.8.5) id RAA10389;
	Tue, 2 Feb 1999 17:46:01 -0700 (MST)
From: Terry Lambert <tlambert@primenet.com>
Message-Id: <199902030046.RAA10389@usr09.primenet.com>
Subject: Re: "$1$" crypt() algorithm
To: lem@cantv.net
Date: Wed, 3 Feb 1999 00:45:59 +0000 (GMT)
Cc: marcs@znep.com, hackers@FreeBSD.ORG
In-Reply-To: <36B50F0E.9A921B32@cantv.net> from "Luis Mu?oz" at Jan 31, 99 10:18:54 pm
X-Mailer: ELM [version 2.4 PL25]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

> > Does anyone know if there are any other OS'es that use a "$1$" identifier
> > for crypt()ed passwords but do not use the same md5 algorithm that FreeBSD
> > does?
> 
> I wrote a perl module to handle this kind of encryption model
> on various machines. I know of people working on linux, alpha,
> sun and others with it sharing password files from other systems
> (probably linux and FreeBSD). In all of them it works, which means
> it is the same algorithm.
> 
> I'll be very interested to know if you find any positives.

FWIW, LDAPv3 and related protocols and/or code expecting to obtain
authentication data from an LDAP database uses:

	{crypt}SDFGgskh351!@
	{md5}XXXXXXYYYYYZZZZ

(The passwords here are sames that aren't correct).

The point is that the algorithm is identified by a leading encoding
tag using the SASL ID for the thing.


					Terry Lambert
					terry@lambert.org
---
Any opinions in this posting are my own and not those of my present
or previous employers.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message