Passwords related postings

Generating password hashes

• Generating unix-style MD5 hash: openssl passwd -1 -salt QIGCa pippo
  • produces: $1$QIGCa$/ruJs8AvmrknzKTzM2TYE.
• generating password hash using system’s native crypt() command: perl -e ‘print crypt(“pippo”, “\$1\$QIGCa”),”\n”‘
  • produces: $1Su6NR9CFU/6
• Using Python’s Passlib library (http://packages.python.org/passlib/):
  • Install Python (e.g. in Cygwin)
  • Install Passlib library following instructions at http://packages.python.org/passlib/install.html
  • start Python: python
  • Calculate the SHA256 hash of the word Password:
    

    >>> from passlib.hash import sha256_crypt
    >>> hash = sha256_crypt.encrypt("password")
    >>> hash
    '$5$rounds=80000$9GPMLb8EE.1QFrUk$Y0XQiZRKMhOrB2GcfCeWREG.x3jCfa5pbmxSO/hjCE3'
    >>> sha256_crypt.encrypt("password")
    '$5$rounds=80000$9fjOxTQNeyPhsCvp$XmyKju3TfWUEPXGPXMZ6sIPcv26Uok7NLPyZhx5g7R9'
    >>> sha256_crypt.encrypt("password", rounds=12345)
    '$5$rounds=12345$Kk9DTJPMRyxGFB3q$7tdzdJXq4YRu7ms6PGo7zTlOHVwYOQO1aUeUsZ3Mrl5'
    >>> sha256_crypt.verify("password", hash)
    True
    >>> sha256_crypt.verify("letmeinplz", hash)
    False
      

  • Generating BouncyCastle SHA1-512 hashes for use in Atlassian JIRA:
    

    >>> from passlib.hash import atlassian_pbkdf2_sha1
    >>> atlassian_pbkdf2_sha1.encrypt("password")
    '{PKCS5S2}fU8ppRTCuJeS8n7PGYOQMhVqZ4hUidTIiWI4K8R8IBOXm/lYywaouSLtvlTeTr3V'
    >>> atlassian_pbkdf2_sha1.encrypt("password")
    '{PKCS5S2}+X+PMcYYAwBAKIWwFsJY639EipU1NXJfc1jKC5VYHZV7zoDI4zTEpKO4xZQoegg1'
    >>> atlassian_pbkdf2_sha1.encrypt("password")
    '{PKCS5S2}1Nq7N2YM4ZyTstZaSynlnGGh2rgAG+b7SB+9xreszUhrE39BnfwNg2RGm6tqvDg2'
    >>> atlassian_pbkdf2_sha1.encrypt("password")
    '{PKCS5S2}bu1dK0WotXYuBaB0bo2RslxMAp4JawLofUFw4S5fZdAtfsm3Ats6kO6j5NaHZCdt'
    >>> atlassian_pbkdf2_sha1.encrypt("password")
    '{PKCS5S2}z/mfc47xvjcm5Ny7dw7BeExB68Oc4XiTJvUS5HRAadKr4/Aomn1WOMMrMWtikUPK'
      

  • Supported hashing algorithms:
    • Archaic Unix Schemes:
      • passlib.hash.des_crypt – DES Crypt
      • passlib.hash.bsdi_crypt – BSDi Crypt
      • passlib.hash.bigcrypt – BigCrypt
      • passlib.hash.crypt16 – Crypt16
    • Standard Unix Schemes:
      • passlib.hash.md5_crypt – MD5 Crypt
      • passlib.hash.bcrypt – BCrypt
      • passlib.hash.sha1_crypt – SHA-1 Crypt
      • passlib.hash.sun_md5_crypt – Sun MD5 Crypt
      • passlib.hash.sha256_crypt – SHA-256 Crypt
      • passlib.hash.sha512_crypt – SHA-512 Crypt
    • Other Modular Crypt Schemes:
      • passlib.hash.apr_md5_crypt – Apache’s MD5-Crypt variant
      • passlib.hash.phpass – PHPass’ Portable Hash
      • passlib.hash.pbkdf2_digest – Generic PBKDF2 Hashes
      • passlib.hash.cta_pbkdf2_sha1 – Cryptacular’s PBKDF2 hash
      • passlib.hash.dlitz_pbkdf2_sha1 – Dwayne Litzenberger’s PBKDF2 hash
      • passlib.hash.scram – SCRAM Hash
      • passlib.hash.bsd_nthash – FreeBSD’s MCF-compatible nthash encoding
      • passlib.hash.unix_disabled – Unix Disabled Account Helper
    • Standard LDAP (RFC2307) Schemes:
      • passlib.hash.ldap_md5 – MD5 digest
      • passlib.hash.ldap_sha1 – SHA1 digest
      • passlib.hash.ldap_salted_md5 – salted MD5 digest
      • passlib.hash.ldap_salted_sha1 – salted SHA1 digest
      • passlib.hash.ldap_crypt – LDAP crypt() Wrappers
      • passlib.hash.ldap_plaintext – LDAP-Aware Plaintext Handler
    • Non-Standard LDAP Schemes:
      • passlib.hash.ldap_hex_md5 – Hex-encoded MD5 Digest
      • passlib.hash.ldap_hex_sha1 – Hex-encoded SHA1 Digest
      • passlib.hash.ldap_pbkdf2_digest – Generic PBKDF2 Hashes
      • passlib.hash.atlassian_pbkdf2_sha1 – Atlassian’s PBKDF2-based Hash
      • passlib.hash.fshp – Fairly Secure Hashed Password
      • passlib.hash.roundup_plaintext – Roundup-specific LDAP Plaintext Handler
    • SQL Database Hashes:
      • passlib.hash.mssql2000 – MS SQL 2000 password hash
      • passlib.hash.mssql2005 – MS SQL 2005 password hash
      • passlib.hash.mysql323 – MySQL 3.2.3 password hash
      • passlib.hash.mysql41 – MySQL 4.1 password hash
      • passlib.hash.postgres_md5 – PostgreSQL MD5 password hash
      • passlib.hash.oracle10 – Oracle 10g password hash
      • passlib.hash.oracle11 – Oracle 11g password hash
    • MS Windows Hashes:
      • passlib.hash.lmhash – LanManager Hash
      • passlib.hash.nthash – Windows’ NT-HASH
      • passlib.hash.msdcc – Windows’ Domain Cached Credentials
      • passlib.hash.msdcc2 – Windows’ Domain Cached Credentials v2
    • Other Hashes:
      • passlib.hash.cisco_pix – Cisco PIX hash
      • passlib.hash.cisco_type7 – Cisco “Type 7” hash
      • passlib.hash.django_digest – Django-specific Hashes
      • passlib.hash.grub_pbkdf2_sha512 – Grub’s PBKDF2 Hash
      • passlib.hash.hex_digest – Generic Hexdecimal Digests
      • passlib.hash.plaintext – Plaintext
    • Cisco “Type 5” hashes

Passphrase Hashes

• Passphrase Hashes – http://www.users.zetnet.co.uk/hopwood/crypto/scan/ph.html
• Authenticators (= magic strings = marker strings): When a passphrase is verified, the first few characters of the authenticator [= “magic”] determine which mechanism is used:
  • If the first character is not “$” or “_”, the traditional crypt3 is used. 2 chars salt. Only the first 8 chars of the passwords are used.
  • “$1$”: MD5-crypt is used. [Linux, BSD]. Salt up to 8 chars long.
  • “$2$”: Blowfish is used. [Linux] – OBSOLETE
  • “$2a$”, bcrypt is used. NOTE: Some sources indicate use of Blowfish (OpenBSD) or eksblowfish.
  • “$2x$” or “$2y$”, Blowfish is used.
  • “$3$”, NT-hashman [FreeBSD] or depecated/broken SHA-256
  • “$4$”, depecated/broken SHA-512
  • “$5$”, SHA-256 [Linux]. Salt up to 16 chars long.
  • “$6$”, SHA-512 [Linux]. Salt up to 16 chars long.
  • Unknown: “$9$”, “$9a$”, $15abc$, $apr1$
  • “$md5$”: Sun MD5

Sources:

• http://stackoverflow.com/questions/6366897/hashing-a-string-using-the-algorithm-that-linux-uses-to-hash-users-passwords
• http://commons.apache.org/codec/apidocs/org/apache/commons/codec/digest/Crypt.html
• Unix crypt using SHA-256 and SHA-512 – http://www.akkadia.org/drepper/SHA-crypt.txt
• Bug 811753 – crypt() is broken in fips mode – https://bugzilla.redhat.com/show_bug.cgi?id=811753
• crypt(3) – Paper over sizeof()/strlen() bug causing 32/64-bit issues – http://gitweb.dragonflybsd.org/dragonfly.git/commitdiff/5108d56f29e4e338650bc6fd479474ae383acb46
• Password hashing weakness in DF – https://bugs.dragonflybsd.org/issues/2278

Articles

• Salt (cryptography) – http://en.wikipedia.org/wiki/Salt_%28cryptography%29
• Shadow password (Ubuntu Forums) – http://ubuntuforums.org/showthread.php?p=5318038
• “Storing Passwords – done right!” by Christoph Wille (translated by Bernhard Spuida) (2004.01.05) – http://www.aspheute.com/english/20040105.asp

---

Passwords related postings at this blog:

• Stages of checking password crackability – https://eikonal.wordpress.com/2010/07/13/stages-of-checking-password-crackability/
• Enforcing password virtues in Linux – https://eikonal.wordpress.com/2010/07/13/pam_cracklib/
• Password expiration script for Unix – https://eikonal.wordpress.com/2011/05/03/password-expiration-script-for-unix/
• PAM (Pluggable Authentication Modules) – https://eikonal.wordpress.com/2011/03/11/pam
• Password generators – https://eikonal.wordpress.com/2010/07/04/password-generators/
• Cracking Kerberos passwords – https://eikonal.wordpress.com/2010/06/17/cracking-kerberos-passwords/
• John the Ripper – https://eikonal.wordpress.com/2010/05/25/john-the-ripper/
• Cisco “password 7″ decryption – C code – https://eikonal.wordpress.com/2010/05/21/cisco-%E2%80%9Cpassword-7%E2%80%B3-decryption-%E2%80%93-c-code
• Cisco “password 7″ – https://eikonal.wordpress.com/2010/05/21/cisco-%E2%80%9Cpassword-7%E2%80%B3/
• Personal computer security > Passwords management – https://eikonal.wordpress.com/2011/02/28/personal-computer-security/
• Cryptography resources > Hash algorithms > Passphrase Hashes – https://eikonal.wordpress.com/2010/03/17/cryptography-resources/

Cryptography resources

Sites

• Cryptology ePrint Archive – http://eprint.iacr.org/
• Cryptolib.com – http://cryptolib.com/ | Ciphers: http://cryptolib.com/ciphers/
• Standard Cryptographic Algorithm Naming (Version 1.0.20a – 22 October, 2002) – http://weidai.com/scan-mirror/intro.html
• Cryptography Algorithms at Galaxy.com search engine – http://www.galaxy.com/dir962470/Algorithms.htm
• Cypherspace by Adam Back – http://www.cypherspace.org/

Historic cyphers

• The “Copiale Cipher” by Kevin Knight, Beáta Megyesi, Christiane Schaefer – http://stp.lingfil.uu.se/~bea/copiale/
  • “How Revolutionary Tools Cracked a 1700s Code” by John Markoff (The New York Times; 2011.10.24) – http://www.nytimes.com/2011/10/25/science/25code.html?_r=1

Hash algorithms

• Passphrase Hashes – http://www.users.zetnet.co.uk/hopwood/crypto/scan/ph.html

  • Authenticators: When a passphrase is verified, the first few characters of the authenticator [= “magic”] determine which mechanism is used:
    • If the first three characters are “$1$”, MD5-crypt is used.
    • If the first four characters are “$2a$”, bcrypt is used.
    • If the first character is not “$” or “_”, Traditional-crypt3 is used.

• The HashClash website – http://www.win.tue.nl/hashclash/ – hash algorithms collisions

RSA

• export-a-crypto-system sig – http://www.cypherspace.org/rsa/, http://www.cypherspace.org/rsa/rsa-details.html – a Perl 3-line implementation of RSA encryptor and decryptor.

  #!/bin/perl -sp0777i<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<j]dsj $/=unpack('H*',$_);$_=`echo 16dio\U$k"SK$/SM$n\EsN0p[lN*1 lK[d2%Sa2/d0$^Ixp"|dc`;s/\W//g;$_=pack('H*',/((..)*)$/)

  A 2-line version:

  print pack"C*",split/\D+/,`echo "16iII*o\U@{$/=$z;[(pop,pop,unpack"H*", )]}\EsMsKsN0[lN*1lK[d2%Sa2/d0<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<J]dsJxp"|dc`

  • Use:
    • Encryption: echo “squeamish ossifrage” | rsa -k=10001 -n=1967cb529 > msg.rsa
    • Decryption: % rsa -d -k=ac363601 -n=1967cb529 < msg.rsa
  • requires GNU dc (http://www.cypherspace.org/rsa/dc.html)

  .