10 Jul
2002
10 Jul
'02
10:39
On Wednesday 10 July 2002 12.23, Reckhard, Tobias wrote:
As Olaf has repeatedly said, in the case where DES is used, the salt is encrypted using the password as a key to get the 'hash'.
I think this is slightly wrong. The salt is used to mix the encryption algorithm, and what is actually encrypted is 128 zero-bits. At least that is how I understand the code in libcrypt and the manpage of crypt() //Anders