DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://nagoya.apache.org/bugzilla/show_bug.cgi?id=26978>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND INSERTED IN THE BUG DATABASE.
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=26978 Add support for 'salt' to all Realms [EMAIL PROTECTED] changed: What |Removed |Added ---------------------------------------------------------------------------- OS/Version|Other |All ------- Additional Comments From [EMAIL PROTECTED] 2004-02-16 16:57 ------- Code for generating a 'salted digest': MessageDigest md = MessageDigest.getInstance("MD5"); // get digest A byte[] digestA = md.digest(password.getBytes()); // generate the salt... byte[] salt = new byte[md.getDigestLength()]; new SecureRandom().nextBytes(salt); // generate digest B from digest A and salt md.update(digestA); byte[] digestB = md.digest(salt); Code for comparing two passwords: MessageDigest md = MessageDigest.getInstance("MD5"); // generate digest A from given password byte[] digestA = md.digest(givenPassword.getBytes()); // generate digest B from digest A and stored salt md.update(digestA); byte[] digestB = md.digest(storedSalt); // compare digest B with stored digest boolean equal = Arrays.equals(digestB, storedDigest); --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
