Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provide a commandline utility to decode hash parameters #66

Open
gvegidy opened this issue Nov 15, 2018 · 1 comment
Open

Provide a commandline utility to decode hash parameters #66

gvegidy opened this issue Nov 15, 2018 · 1 comment
Labels
enhancement Requests a new feature or improvement. Without "need more information", we agree it's desirable. help wanted The libxcrypt core developers do not plan to work on this themselves but would review a PR.

Comments

@gvegidy
Copy link

gvegidy commented Nov 15, 2018

Each hash method has it's own way to encode parameters like cost and salt. For auditing and monitoring purposes it would be nice to have a generic tool which could decode them.

I think of something like this:

> gethashparam $y$jCT$4NdgJN...
method: yescrypt
salt: 1asdfasfda...
r: 32
N: 32768
p: 1
t: 0
g: 0

If I planned to transition to a more strict hashing policy, such a tool would be the base for a script which told me which users have to re-hash their password. Also I could monitor for salt reuse.

I know that there are plans to enforce hash policy with crypt.conf, but I think such a tool could be complementary as you won't be able to enforce a policy which excludes most of your users.
@melak
Copy link

melak commented May 11, 2022

+1

@zackw zackw added enhancement Requests a new feature or improvement. Without "need more information", we agree it's desirable. help wanted The libxcrypt core developers do not plan to work on this themselves but would review a PR. labels Mar 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement Requests a new feature or improvement. Without "need more information", we agree it's desirable. help wanted The libxcrypt core developers do not plan to work on this themselves but would review a PR.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@gvegidy @zackw @melak