Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the '10.3: Make your password more secure' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
10.3: Make your password more secure
Authored by: testuser on Jan 29, '04 03:09:15PM

re: "I'm not sure if it's md5 or something else"

According to Apple documentation ;ShadowHash; uses sha1 encryption.



[ Reply to This | # ]
10.3: Make your password more secure
Authored by: testuser on Jan 30, '04 12:05:29PM

Sorry, scratch that.

sha1 does not produce the 104 byte strings used in the 10.3 hashes. These hashes are stored in /var/db/shadow/hash under the user's generateduid. The generateduid is a new user property in the NetInfo database under 10.3.

I don't know what algorithm is being used!



[ Reply to This | # ]
10.3: Make your password LESS secure
Authored by: HotButter on Mar 29, '04 01:05:20AM

Under 10.3.x by default all users get an NT4 samba hash which is a PIECE OF CAKE TO CRACK. The SHA1 hash is also there and apparently another longer hash as well but it makes little difference.

Under 10.2.x the NT4 hashes were only created if Windows sharing was turned on.

http://freaky.staticusers.net/ugboard/viewtopic.php?t=10834&highlight=



[ Reply to This | # ]