[tor-relays] Hashed password behaviour
Jacki M
jackiam2003 at yahoo.com
Sun Oct 15 00:47:09 UTC 2017
Here is an excerpt from the “Tor control protocol"
If the 'HashedControlPassword' option is set, it must contain the salted
hash of a secret password. The salted hash is computed according to the
S2K algorithm in RFC 2440 (OpenPGP), and prefixed with the s2k specifier.
This is then encoded in hexadecimal, prefixed by the indicator sequence
"16:". Thus, for example, the password 'foo' could encode to:
16:660537E3E1CD49996044A3BF558097A981F539FEA2F9DA662B4626C1C2
3116 <https://gitweb.torproject.org/torspec.git/tree/control-spec.txt#n3116>
> On Oct 14, 2017, at 5:33 PM, Geoff Down <geoffdown at fastmail.net> wrote:
>
> Hello all,
> what sort of crazy bug would make Tor give different hashes for the same
> password?
>
> $ tor --hash-password hello
> 16:735E6FA5355D4146606AFE25B61B411DF419878C99705164D038FC99BC
> $ tor --hash-password hello
> 16:8201E7D35BB8CACB60BF8947B49A3480BA1A17E77EDA8BE45790746884
> $ tor --version
> Tor version 0.3.1.7 (git-6babd3d9ba9318b3).
>
> (on OSX 10.4).
> GD
> _______________________________________________
> tor-relays mailing list
> tor-relays at lists.torproject.org
> https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20171014/e8a46844/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 1518 bytes
Desc: not available
URL: <http://lists.torproject.org/pipermail/tor-relays/attachments/20171014/e8a46844/attachment-0001.bin>
More information about the tor-relays
mailing list