[Mailman-Users] Re: several messages

John W Baxter jwblist at olympus.net
Thu Jan 10 05:00:20 CET 2002

At 19:57 -0800 1/8/2002, Satya wrote:
>Going the other way -- decrypting the encrypted string -- is very,
>very, difficult.

It's not all that hard, hence shadow passwords, and also different methods
of encrypting.  In the mid-90s, a high end desktop machine was said to be
able to produce a working password, given the encrypted one, in half a day
or so, by brute force (and without raising red flags by testing with the
system in question).  (The 8-character password limit inherent in using
crypt() puts a nice constraint on the brute force method's maximum time.)


John Baxter   jwblist at olympus.net      Port Ludlow, WA, USA

More information about the Mailman-Users mailing list