HPE Community
Operating System - HP-UX
1753396 Members
7153 Online
108792 Solutions
New Discussion юеВ

Re: decrypt password from /tcb/auth/file

 
amipankaj
Frequent Advisor

тАО11-24-2010 07:32 AM

тАО11-24-2010 07:32 AM

decrypt password from /tcb/auth/file


Hi Expert,

Is it possible to decrypt password from /tcb/auth/file in a trusted HPUX box? If yes...how?


Thanks and Regards,
Pankaj Roy
0 Kudos
Reply
4 REPLIES 4
madhuchakkaravarthy
Trusted Contributor

тАО11-24-2010 07:37 AM

тАО11-24-2010 07:37 AM

Re: decrypt password from /tcb/auth/file

hi

its /tcb/files/auth and not tcb/auth/file

suppose if u want to edit pwd for pankaj

go to
#cd tcb/files/auth/p
#vi pankaj ( username)

edit upwd from = to :

otherwise u can edit /etc/secureety/default file and change the min history depth

regards

MC
0 Kudos
Reply
Shibin_2
Honored Contributor

тАО11-24-2010 07:55 AM

тАО11-24-2010 07:55 AM

Re: decrypt password from /tcb/auth/file

This is a similar post, what you are looking for.

http://forums11.itrc.hp.com/service/forums/questionanswer.do?admit=109447626+1290613623030+28353475&threadId=1023012

Attachment was removed due to security reason. You may ask him personally.
Regards
Shibin
0 Kudos
Reply
Patrick Wallek
Honored Contributor

тАО11-24-2010 08:50 AM

тАО11-24-2010 08:50 AM

Re: decrypt password from /tcb/auth/file

No, it is not possible to decrypt passwords. Passwords are a 'hash', which is a one-way encryption function.

When you log in, the password you enter is hashed and the resulting value compared with what is stored. If they match, you are good.

The value stored in /etc/passwd or /tcb/files/* or /etc/shadow is never "decrypted" once it has been "encrypted" (hashed).
0 Kudos
Reply
Ismail Azad
Esteemed Contributor

тАО11-24-2010 08:58 PM

тАО11-24-2010 08:58 PM

Re: decrypt password from /tcb/auth/file

Hi,

This depends on which encryption algorithm is being done on the O.S if it's DES or SHA512, the latter for which you would need an extra bundle and this can be identified if you see two dollar symbols in the ciphertext. Now, it's not possible to decrypt the password but making the password visible can allow a hacker to compare the encrypted password with the dictionary and in the worst case successfully "guess" the password which is the reason for which we have /etc/shadow and in your case the trusted system. Don't forget to assign points to those who have taken the time to help you out. :)

Regards
Read, read and read... Then read again until you read "between the lines".....
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.