authen::passphrase::mysql41(3pm) [debian man page]
Authen::Passphrase::MySQL41(3pm) User Contributed Perl Documentation Authen::Passphrase::MySQL41(3pm) NAME
Authen::Passphrase::MySQL41 - passphrases using the MySQL v4.1 algorithm SYNOPSIS
use Authen::Passphrase::MySQL41; $ppr = Authen::Passphrase::MySQL41->new( hash_hex => "9CD12C48C4C5DD62914B". "3FABB93131746E9E9115"); $ppr = Authen::Passphrase::MySQL41->new( passphrase => "passphrase"); $hash = $ppr->hash; $hash_hex = $ppr->hash_hex; if($ppr->match($passphrase)) { ... DESCRIPTION
An object of this class encapsulates a passphrase hashed using the algorithm used by MySQL from version 4.1. This is a subclass of Authen::Passphrase, and this document assumes that the reader is familiar with the documentation for that class. The MySQL v4.1 hash scheme is based on the SHA-1 digest algorithm. The passphrase is first hashed using SHA-1, then the output of that stage is hashed using SHA-1 again. The final hash is the output of the second SHA-1. No salt is used. In MySQL the hash is represented as a "*" followed by 40 uppercase hexadecimal digits. The lack of salt is a weakness in this scheme. Salted SHA-1 is a better scheme; see Authen::Passphrase::SaltedDigest. CONSTRUCTOR
Authen::Passphrase::MySQL41->new(ATTR => VALUE, ...) Generates a new passphrase recogniser object using the MySQL v4.1 algorithm. The following attributes may be given: hash The hash, as a string of 20 bytes. hash_hex The hash, as a string of 40 hexadecimal digits. passphrase A passphrase that will be accepted. Either the hash or the passphrase must be given. METHODS
$ppr->hash Returns the hash value, as a string of 20 bytes. $ppr->hash_hex Returns the hash value, as a string of 40 uppercase hexadecimal digits. $ppr->match(PASSPHRASE) This method is part of the standard Authen::Passphrase interface. SEE ALSO
Authen::Passphrase, Digest::SHA AUTHOR
Andrew Main (Zefram) <zefram@fysh.org> COPYRIGHT
Copyright (C) 2006, 2007, 2009, 2010, 2012 Andrew Main (Zefram) <zefram@fysh.org> LICENSE
This module is free software; you can redistribute it and/or modify it under the same terms as Perl itself. perl v5.14.2 2012-02-07 Authen::Passphrase::MySQL41(3pm)
Check Out this Related Man Page
Authen::Passphrase::LANManager(3pm) User Contributed Perl Documentation Authen::Passphrase::LANManager(3pm) NAME
Authen::Passphrase::LANManager - passphrases using the LAN Manager hash algorithm SYNOPSIS
use Authen::Passphrase::LANManager; $ppr = Authen::Passphrase::LANManager->new( hash_hex => "855c3697d9979e78ac404c4ba2c66533"); $ppr = Authen::Passphrase::LANManager->new( passphrase => "passphrase"); $ppr = Authen::Passphrase::LANManager->from_rfc2307( "{LANMAN}855c3697d9979e78ac404c4ba2c66533"); $hash = $ppr->hash; $hash_hex = $ppr->hash_hex; $ppr0 = $ppr->first_half; $ppr1 = $ppr->second_half; if($ppr->match($passphrase)) { ... $userPassword = $ppr->as_rfc2307; DESCRIPTION
An object of this class encapsulates a passphrase hashed using the Microsoft LAN Manager hash function. This is a subclass of Authen::Passphrase, and this document assumes that the reader is familiar with the documentation for that class. The hash algorithm can be used on up to fourteen Latin-1 characters of passphrase. First the passphrase is folded to uppercase, and zero- padded to fourteen bytes. Then it is split into two halves. Each seven-byte half is used as a 56-bit DES key, to encrypt the fixed plaintext block "KGS!@#$%". The eight-byte ciphertexts are concatenated to form the sixteen-byte hash. There is no salt. Because the two halves of the passphrase are hashed separately, it is possible to manipulate (e.g., crack) a half hash in isolation. See Authen::Passphrase::LANManagerHalf. Warning: Don't even think about using this seriously. It's an exceptionally weak design, flawed in pretty much every respect. CONSTRUCTORS
Authen::Passphrase::LANManager->new(ATTR => VALUE, ...) Generates a new passphrase recogniser object using the LAN Manager hash algorithm. The following attributes may be given: hash The hash, as a string of 16 bytes. hash_hex The hash, as a string of 32 hexadecimal digits. passphrase A passphrase that will be accepted. Either the hash or the passphrase must be given. Authen::Passphrase::LANManager->from_rfc2307(USERPASSWORD) Generates a LAN Manager passphrase recogniser from the supplied RFC2307 encoding. The string must consist of "{LANMAN}" (or its synonym "{LANM}") followed by the hash in hexadecimal; case is ignored. METHODS
$ppr->hash Returns the hash value, as a string of 16 bytes. $ppr->hash_hex Returns the hash value, as a string of 32 hexadecimal digits. $ppr->first_half Returns the hash of the first half of the passphrase, as an Authen::Passphrase::LANManagerHalf passphrase recogniser. $ppr->second_half Returns the hash of the second half of the passphrase, as an Authen::Passphrase::LANManagerHalf passphrase recogniser. $ppr->match(PASSPHRASE) $ppr->as_rfc2307 These methods are part of the standard Authen::Passphrase interface. SEE ALSO
Authen::Passphrase, Authen::Passphrase::LANManagerHalf, Crypt::DES AUTHOR
Andrew Main (Zefram) <zefram@fysh.org> COPYRIGHT
Copyright (C) 2006, 2007, 2009, 2010, 2012 Andrew Main (Zefram) <zefram@fysh.org> LICENSE
This module is free software; you can redistribute it and/or modify it under the same terms as Perl itself. perl v5.14.2 2012-02-07 Authen::Passphrase::LANManager(3pm)