how can i get salt from /etc/shadow

jabka · 12-25-2005, 01:02 PM

Howdy,..
as far as i know the pass is incrypted with some thing named salt(4096 value) know i do know my password and i wish to retrive that spesific value how can i do ?
the string are :
tux:$1$8/k6YAoS$TmQ2V0Jx4gRgxNi4h8bKh.:13142:-1:99999:-1:::
and the pass is qazwsxcv
so i understand that $1$8/k6YAoS$TmQ2V0Jx4gRgxNi4h8bKh.
holds the encrypted pass
as far as i know the $1$ says that MD5-based algorithm was used.
so could someone plz explain how can retrive the salt value ?

Mara · 12-25-2005, 02:19 PM

Long time ago (5 years or so) it was true that salt made the algorithm choose one of the 4096 modes. It's not true now. Crypt man page says that:

Code:

       The glibc2 version of this function has the following  additional  fea-
       tures.   If  salt is a character string starting with the three charac-
       ters "$1$" followed by at most eight characters, and optionally  termi-
       nated  by  "$",  then instead of using the DES machine, the glibc crypt
       function uses an MD5-based algorithm,  and  outputs  up  to  34  bytes,
       namely  "$1$<string>$", where "<string>" stands for the up to 8 charac-
       ters following "$1$" in the salt, followed by 22 bytes chosen from  the
       set [a-zA-Z0-9./].  The entire key is significant here (instead of only
       the first 8 bytes).

I think it makes the answer for your question clear.