Re: Netscape Ldap ldif file SHA password cracking

From: Rafał Kupka (rkupka@wdg.pl)
Date: Wed Dec 01 2004 - 13:41:33 EST

• Next message: Gaurav Kumar: "application security testing training"
• Previous message: Alfred Huger: "Administrivia"
• In reply to: miguel.dilaj@pharma.novartis.com: "Re: Netscape Ldap ldif file SHA password cracking"
• Next in thread: m a: "Re: Netscape Ldap ldif file SHA password cracking"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Miguel.dilaj@pharma.novartis.com wrote:
Hello,

[cut]

> My first guess is some kind of Base64 encoding (or similar) of the string
> without the '{SHA}'.
> Example:
> plaintext: password
> SHA-1: 5BAA61E4C9B93F3F0682250B6CF8331B7EE68FD8
> Base64 encoding of the above:
> NUJBQTYxRTRDOUI5M0YzRjA2ODIyNTBCNkNGODMzMUI3RUU2OEZEOA==
>
> So you see the similarities, but still no cigar!

It's {SHA1}<base64 encoded binary form of sha1 hash>.

for eg.,
$perl -e 'use Digest::SHA1 qw(sha1); print sha1(@ARGV[0]);' password |
base64-encode
W6ph5Mm5Pz8GgiULbPgzG37mj9g=

Plaintext: password
SHA-1: <binary data>
Base64 of above data: W6ph5Mm5Pz8GgiULbPgzG37mj9g=

Cheers,

-- 
Rafal Kupka <rkupka@wdg.pl>

• Next message: Gaurav Kumar: "application security testing training"
• Previous message: Alfred Huger: "Administrivia"
• In reply to: miguel.dilaj@pharma.novartis.com: "Re: Netscape Ldap ldif file SHA password cracking"
• Next in thread: m a: "Re: Netscape Ldap ldif file SHA password cracking"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:09 EDT