Re: What is md5sum?

• Previous message: Michael Heiming: "Re: What is md5sum?"
• In reply to: Michael Heiming: "Re: What is md5sum?"
• Next in thread: Micha³ Kosmulski: "Re: What is md5sum?"
• Reply: Micha³ Kosmulski: "Re: What is md5sum?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date: Tue, 29 Jun 2004 18:58:34 -0400

Michael Heiming wrote:

>>Another typical use for MD5 codes (although not for the md5sum
>>command) is to store passwords. You don't want the administrator
>>(root) to know the password that you chose. A simplified
>
> Why should he? UID 0 doesn't need any user password at all, the
> system doesn't ask if root uses 'su - <username>'.
>
> One of the reasons should be to make it virtually impossible to
> get the password back from a somehow lost shadow file.

True as well.

Some time ago, when I had not the slightest idea about how these
things are implemented (I had just started using a Unix system),
I had a discussion with the system administrator; the discussion
started because he somehow wanted me to enter my password or
something like that; I told him that he should know my password,
he is root. He explained to me that no, he can not know my
password, and that he didn't need to know it, as he, as user
root, can do anything that would require me to supply my user
password (well, this is a simplified phrasing, but you know what
I'm saying). I then didn't understand the logic, arguing that if
he, as user root, can access anything that belongs to me, what
would I gain by hiding the password from him? -- the answer
was very trivial, and after he explained it to me, it kind of
got stuck in my mind as one of the reasons why you would use
hashed passwords.

But of course, the reason you mention is also important -- perhaps
the most important one; after all, in principle one trusts the
system administrator of a system that one uses, so hiding the
password from him/her should be considered not-too-important (at
least in an ideal world :-)).

Carlos

--

• Previous message: Michael Heiming: "Re: What is md5sum?"
• In reply to: Michael Heiming: "Re: What is md5sum?"
• Next in thread: Micha³ Kosmulski: "Re: What is md5sum?"
• Reply: Micha³ Kosmulski: "Re: What is md5sum?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]