Re: Re: Re: OODL: CFD: Leadership in the OpenCard Project

[Adrian Sutton]

> MP0werd: I think I made a minor booboo regarding my explanation. I used a 2 
> way function to do the job, a 1 way function would work like this (not sure 
> about all the details):
> 
> salt+00000000 > encrypt with password > encrypted string
> 
> to check:
> 
> salt+00000000 > encrypt with password > does string = stored string?
> If yes, proceed, if no, don't.
> 
> The part I'm unclear about is how *nix keeps the salt the same on both the 
> stored password and the unencrypted password. Maybe I was right the first 
> time, and *nix uses a two way function, or maybe I got the details of this 
> implemention wrong somehow. I'll have to consult my various texts.

Adrian:  This system makes sense to me.  All I need is a one-way 
formula.  I will ring my Dad tonight and talk to him (he's a Math's 
teacher and I recall talking to him about one-way formulas once 
before.)  I will also search the net for a DES external tonight.