home *** CD-ROM | disk | FTP | other *** search
/ NetNews Usenet Archive 1992 #16 / NN_1992_16.iso / spool / alt / security / 3991 < prev    next >
Encoding:
Internet Message Format  |  1992-07-23  |  1.2 KB
  1. Path: sparky!uunet!cis.ohio-state.edu!zaphod.mps.ohio-state.edu!moe.ksu.ksu.edu!phys.ksu.edu!rjq
  2. From: rjq@phys.ksu.edu (Rob Quinn)
  3. Newsgroups: alt.security
  4. Subject: Re: passwd security check
  5. Date: 23 Jul 1992 14:44:26 GMT
  6. Organization: Kansas State University
  7. Lines: 14
  8. Message-ID: <14mgkaINN1uq@moe.ksu.ksu.edu>
  9. References: <1992Jul22.190827.30077@iitmax.iit.edu> <1992Jul22.221222.6185@Princeton.EDU> <1992Jul23.092715.1@zodiac.rutgers.edu>
  10. NNTP-Posting-Host: bohr.phys.ksu.edu
  11.  
  12. In <1992Jul23.092715.1@zodiac.rutgers.edu> leichter@zodiac.rutgers.edu writes:
  13. ]One thing it's important to remember is that there are many passwords that
  14. ]hash to the same value.  Even if you and I have the same salt and the same
  15. ]hash value, it doesn't mean we chose the same password - though it DOES mean
  16. ]that either of our passwords will work on either account.
  17.  
  18.  Can you provide an example? Or is there some mathematical proof? This question
  19. has come up a lot before, and there have been answers on both sides, but no
  20. proof either way that I have seen.
  21.  
  22. --
  23. |                                                                Rob Quinn |
  24. |                                                         rjq@phys.ksu.edu |
  25. |                                                    QuinnBob@KSUVM.BITNET |
  26.