shadow is hashed with SHA or MD?

Current License: CC BY-SA 4.0

13 events

when toggle format	what		by	license	comment
Dec 27, 2019 at 6:00	history	tweeted			twitter.com/StackUnix/status/1210440322943242240
Dec 23, 2019 at 11:39	comment	added	Chris Davies		What's more DES can be written into `/etc/passwd` (instead of `shadow`). Support is definitely out there.
Dec 15, 2019 at 20:03	comment	added	ilkkachu		@mosvy, well, like I said, the length doesn't match. Otherwise it looks like it could be a DES hash. Of course it hasn't been used for eons in any sensible system, but the support is still out there. At least `chpasswd` can be coerced to use it... That's why I wondered how they managed to get that hash.
Dec 15, 2019 at 19:34	comment	added	user313992		@ilkkachu that's not DES and DES hasn't been used for eons. The glibc `crypt(3)` functions does DES just for compat with dummy old games and such. The OP may be testing the waters, for all that I could guess ;-)
Dec 15, 2019 at 18:40	comment	added	ilkkachu		Is that an actual example or did you modify it? Because without the $n$ markers, it should be ye olde DES hash, but the length doesn't seem to match it (yours is 16 characters, and `crypt()` returns a string of 13 characters). I also wonder how a three-year old Ubuntu would end up using DES. What do you have in `/etc/pam.d/common-password`, on the line with `pam_unix.so`? Or in `/etc/login.defs` with `ENCRYPT_METHOD`?
Dec 15, 2019 at 17:36	history	became hot network question
Dec 15, 2019 at 14:35	review	Close votes
Dec 27, 2019 at 3:05
Dec 15, 2019 at 14:19	comment	added	Stephen Kitt		Does this answer your question? How to find the hashing algorithm used to hash passwords?
Dec 15, 2019 at 10:20	vote	accept	Batchen Regev
Dec 15, 2019 at 9:53	history	edited	Kusalananda♦	CC BY-SA 4.0	Tags, markup, title, spelling
Dec 15, 2019 at 9:44	answer	added	Kusalananda♦		timeline score: 15
Dec 15, 2019 at 9:25	review	First posts
Dec 15, 2019 at 10:07
Dec 15, 2019 at 9:24	history	asked	Batchen Regev	CC BY-SA 4.0