Re: Regarding sudo

On Thu, 12 Jul 2007 21:12:23 +0100, ArameFarpado wrote:

Em Quinta, 12 de Julho de 2007 20:42, John Hasler escreveu:

Alan Adams writes:
If the hashed version contains less information than the original
password, doesn't this imply that there is more than one possible
password which will hash to the same result?

Yes, of course. As a result the search space is reduced slightly. It is
still, however, in the bajillions. It's a good tradeoff.

So we have bajillions of diferent passwords all given the same hash?
i don't think so... how does the system knows you typed the exact password
when there is so many others that generates the same hash?
can't be...

http://en.wikipedia.org/wiki/Hash_collision

Collision resistance is described in the above article as weak or strong,
with strong collision resistance being a desirable feature of any
cryptographic hashing function.

--
Douglas Mayne
.

Relevant Pages

  • Re: Insecure Hash Algorithms (MD5) and NTLMv2
    ... hash when you have no access to the original input. ... The only weakness that's really in the air is Collision Resistance, ... Audit your website security with Acunetix Web Vulnerability Scanner: ... Cross site scripting and other web attacks before hackers do! ...
    (Pen-Test)
  • Re: Reverse usage of public/private RSA encryption keys for licensing?
    ... It's just that there is a theorem that proves that if we use random oracle ... algorithm to forge signature (RSA private key encryption of random oracle ... hash) gives ability to solve RSA problem with sufficient amount of signing ... SHA1 doesn't provide the same level of collision resistance, ...
    (microsoft.public.dotnet.security)
  • Re: Reverse usage of public/private RSA encryption keys for licensing?
    ... It's just that there is a theorem that proves that if we use random oracle ... algorithm to forge signature (RSA private key encryption of random oracle ... hash) gives ability to solve RSA problem with sufficient amount of signing ... SHA1 doesn't provide the same level of collision resistance, ...
    (microsoft.public.dotnet.framework)
  • Re: Regarding sudo
    ... You have bajillions of possible passwords only a very small fraction ... produces the correct hash: an impossible task. ... Is there an ideia of how many diferent password will colide in the same ...
    (comp.os.linux.setup)
  • Re: Regarding sudo
    ... Em Quinta, 12 de Julho de 2007 20:42, John Hasler escreveu: ... So we have bajillions of diferent passwords all given the same hash? ...
    (comp.os.linux.setup)
Loading