1834175 Members
2716 Online
110064 Solutions
New Discussion

Password question

 
SOLVED
Go to solution
Ryan Clerk
Frequent Advisor

Password question

Hello experts,

I have noticed that in several threads, passwords are referred to as "encrypted" and sometimes they are referred to as "hashes". Which is correct or are these just different names for the same thing?

TIA,
Ryan
3 REPLIES 3
A. Clay Stephenson
Acclaimed Contributor
Solution

Re: Password question

While these terms are often used interchangably when referring to the UNIX passwd algorithm, technically it is a hash. An encrypted password is reversible; ie, one could apply an algorithm to the encrypted password and retrieve the plaintext. In a hashing algorithm, information is intentionally lost so that the process is not reversible.
If it ain't broke, I can fix that.
A. Clay Stephenson
Acclaimed Contributor

Re: Password question

I should add that one of the true ironies in UNIX is that the function that creates this hash is called crypt even though it does not do encryption. So go figure.
If it ain't broke, I can fix that.
A. Clay Stephenson
Acclaimed Contributor

Re: Password question

I should also add that as another UNIX irony, the crypt command (as opposed to the crypt() function) DOES do encryption; ie, it produces reversible results.
If it ain't broke, I can fix that.