Quote:
Originally Posted by
trento17
Tx, guys
I see that hash value (md5) is defenitly different for those password (I replaced actual string for demonstration.)
Try giving md5
only the first eight characters of each
The hashes in the shadow file aren't direct md5's of passwords, I'm pretty sure. It depends on implementation but usually it's a hash of the password plus a small 'salt' string, to prevent two users with the same password from having identical hashes(and prevent people from just comparing hash keys to big lists of known hashes.)
If your passwords use md5, be aware that md5 has been cracked, and is now considered a poor algorithm. There's software which can generate strings to match a given md5 on command. This doesn't matter unless an attacker has root access to your shadow file though -- in which case you're screwed anyway.