HPE Community
Operating System - HP-UX
1834175 Members
2716 Online
110064 Solutions
New Discussion

Password question

 
SOLVED
Go to solution
Ryan Clerk
Frequent Advisor

‎02-28-2005 06:52 AM

‎02-28-2005 06:52 AM

Password question

Hello experts,

I have noticed that in several threads, passwords are referred to as "encrypted" and sometimes they are referred to as "hashes". Which is correct or are these just different names for the same thing?

TIA,
Ryan
0 Kudos
Reply
3 REPLIES 3
A. Clay Stephenson
Acclaimed Contributor

‎02-28-2005 06:55 AM

‎02-28-2005 06:55 AM

Solution

Re: Password question

While these terms are often used interchangably when referring to the UNIX passwd algorithm, technically it is a hash. An encrypted password is reversible; ie, one could apply an algorithm to the encrypted password and retrieve the plaintext. In a hashing algorithm, information is intentionally lost so that the process is not reversible.
If it ain't broke, I can fix that.
Reply
A. Clay Stephenson
Acclaimed Contributor

‎02-28-2005 06:57 AM

‎02-28-2005 06:57 AM

Re: Password question

I should add that one of the true ironies in UNIX is that the function that creates this hash is called crypt even though it does not do encryption. So go figure.
If it ain't broke, I can fix that.
Reply
A. Clay Stephenson
Acclaimed Contributor

‎02-28-2005 07:13 AM

‎02-28-2005 07:13 AM

Re: Password question

I should also add that as another UNIX irony, the crypt command (as opposed to the crypt() function) DOES do encryption; ie, it produces reversible results.
If it ain't broke, I can fix that.
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.