Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Storing Passwords
Top Forums Web Development Storing Passwords Post 302928984 by Corona688 on Tuesday 16th of December 2014 04:57:08 PM
Old 12-16-2014
Quote:
Originally Posted by jim mcnamara
Regarding keys -- When not in use (ie standing somewhere) the half-keys should be encrypted - both on the user side and the system side. Otherwise they are sitting ducks.
How does one avoid the rube goldberg problem, though? That being, extra encryption/decryption steps where the server knows its own key gains nothing but extra heat and wasted time.
Quote:
Whenever someone cracks your code for the key encryption algorithm, then they win. Period.
How so? Knowing the algorithm won't get them the keys.
Quote:
Unless forward perfect secrecy is mandated take a value-based approach.
I'm not storing financial information, it's more of an admin tool.
Quote:
If somebody can reverse engineer code, or get your source easily, then most things you can do are pointless.
Again, how? Knowing the algorithm does not hand them the keys -- it tells them what they need to steal, but does not give them access.
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Passwords

I am running unix 11.xxx....How do you change a user password. The previous vs was passwd at the command prompt. This no longer works. Thanks for the help (3 Replies)
Discussion started by: turner.rd
3 Replies

2. Shell Programming and Scripting

Hide Passwords

Is there a way not to display the password in the sys out when your korn shell script logs into sqlplus? (3 Replies)
Discussion started by: lesstjm
3 Replies

3. UNIX for Dummies Questions & Answers

sqlplus and passwords

Hope I'm in the right place to ask this. ... and I'm a total noob by the way. When changing an account password through telnet, everything seems fine. I can telnet back in afterward, but if I try to use sqlplus to get in it tells me password invalid. If I try to get in through sqlplus with the... (1 Reply)
Discussion started by: tazman4
1 Replies

4. AIX

passwords encryption

I want to store a password of a user in a encrypted format and the use that encrypted password in my shell scripting. can any one of you let me know how to do it. Thanks in advance (0 Replies)
Discussion started by: kalpana.anuga
0 Replies

5. UNIX for Advanced & Expert Users

About unix passwords.

How the unix is maintaining the password ? How it does the encryption and how the passwords are stored in the system and where it is stored ? How it is better when compared to other OS ? (1 Reply)
Discussion started by: nagalenoj
1 Replies

6. OS X (Apple)

Storing ssh passwords/keys in keychain

Can anyone tell me how to set up ssh and keychain so when I connect to the remote system it uses keychain for the password or public key? The remote system is FreeBSD 8.0. Do I need to setup anything else on that end? Cheers. (0 Replies)
Discussion started by: Haggardly
0 Replies

7. Shell Programming and Scripting

passwords

Dear all, I need to automate/script a user password change process. I'm helpless cannot use expect since it's not installed and cannot install it either. Do i have an alternative. I can store the password in a file and that would be the password that would be set to all the users. If not i don't... (1 Reply)
Discussion started by: earlysame55
1 Replies

8. UNIX for Advanced & Expert Users

When did UNIX start using encrypted passwords, and not displaying passwords when you type them in?

I've been using various versions of UNIX and Linux since 1993, and I've never run across one that showed your password as you type it in when you log in, or one that stored passwords in plain text rather than encrypted. I'm writing a script for work for a security audit, and two of the... (5 Replies)
Discussion started by: Anne Neville
5 Replies

9. HP-UX

Passwords and shadows

version 11.22 1 - In this version there is the shadow file by default?. If so why when I search the file I get "No / etc / shadow file found"? 2 - What does the "*" in etc / password? at the beginning of each password? (1 Reply)
Discussion started by: shinju15
1 Replies

LEARN ABOUT HPUX

logins

logins(1M)																logins(1M)

NAME

       logins - display system and user login data

SYNOPSIS

       groups] logins]

DESCRIPTION

       displays  data  concerning  system  and user logins. The format and content of the output is controlled by command options and may include:
       system or user login, user ID number, comment field value (for example, user name, location), primary group name, primary group ID, supple-
       mentary	group  names,  supplementary  group  IDs,  home directory, login shell, user security level, user audit events, and password aging
       parameters. The default data is: login, user ID, primary group name, primary group ID, and comment field value. Output is  sorted  by  user
       ID,  with  user	logins following system logins. The default output consists of login, user ID, primary group, primary group ID and comment
       field formatted into columns.

       The following options are available to this command:

       Display two account expiration fields. The fields show how long the
	    account can be unused (in days) before it becomes inactive and the date the account will expire.

       Display logins with duplicate UIDs.

       Show multiple group membership data.

       Display with alternate format of one line of colon separated fields.

       Display logins with no passwords

       Display all system logins

       Sort output by login rather than UID.

       Display all user logins.

       Display extended information about selected users. This extended
	    information includes home directory, login shell and password aging data, each on its own line. Password information consists of pass-
	    word status (PS for valid password, LK for locked and NP for no password) and, if a password is present, date of last change, required
	    number of days between changes, and number of days allowed between changes.  In the case of non-trusted  systems,  the  date  of  last
	    change will be the latest Thursday since the change.

       Display all users belonging to
	    groups, sorted by login. A comma separated list specifies multiple groups.

       Display the requested
	    logins.  A comma separated list specifies multiple logins.

       Specify a switch used to classify NIS
	    or local users.  With the option, only users belonging to the specified repository are displayed.

       Multiple  options  may  be  used. Any login matching any of the criteria will be displayed. A login will be displayed only once, even if it
       meets multiple criteria.

EXAMPLES

       List all logins in default format.

       List all logins that have no password or have a duplicate UID in default
			   format.

       List all system logins in the alternate format.

       List all local users of the system.

       List all the NIS users of the system.

WARNINGS

       HP-UX 11i Version 3 is the last release to support trusted systems functionality.

FILES

       HP-UX password file.
       HP-UX group file.

SEE ALSO

       listusers(1), passwd(1), group(4), passwd(4), prpwd(4), shadow(4).

STANDARDS CONFORMANCE

																	logins(1M)
All times are GMT -4. The time now is 05:13 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy