Re: MD5/Des Hashing

Greg Johnson Perry-Spencer ( )
Wed, 12 Aug 1998 14:39:13 -0500 (EST)

I did try removing the one $ from the string, but no luck. The FreeBSDish
MD5 string is much longer than the RadiusNT MD5 passwd string. In debug
mode, I wrote down the RadiusNT string that it displayed, changed this in
my passwd file and was able login. I guess I need to check with the
FreeBSD camp?


On Wed, 12 Aug 1998, Dale E. Reed Jr. wrote:

> Greg Johnson Perry-Spencer wrote:
> >
> > The FreeBSD passwd file is MD5, this is why I find it strange that the two
> > encrypted strings don't match. Is my assumption correct that all MD5
> > encryption strings start with $1$? If so, when I run radius in debug mode
> > and it displays the encrypted passwd it generates to match against the
> > password in the Unix password file, why does it not start with $1$?
> No. MD5 uses the first two characters as the salt for the encryption.
> I'm not sure what the $1$ is. I wander if its a BSDism. Try removing
> it from the password for one user and see if the auth works.
> --
> Dale E. Reed Jr. (
> _________________________________________________________________
> IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs
> Internet Solutions for Today |