duanliaouu965826 2018-01-12 18:58
浏览 148
已采纳

password_verify和doveadm如何在没有盐的情况下验证密码

im currently trying to understand hashes and salts. As i understand it, it should not be possible to verify a password, if i only have the password and the generated hash(that was generated with a random salt ofc). So how can the password_verify function in PHP verify my password, if i dont give it the salt? Is there a hidden variable in the background, that stores it for the php hashing functions?

And if that is the case, how can

doveadm pw -t '{SHA512-CRYPT}$6$myhash...' -p "qwertz"

verify it too, even if i run it on a complety different computer? Thats a tool, that comes with Dovecot(a MDA).

Here is my PHP code, that creates a random salt with 64 chars, combines it with a password, creates a hash and verifies the hash via password_verify().

I just started working on the whole hash/salt/pepper thing today, so there could be a huge flaw in my whole train of thought.

<?php
$password = "qwertz";
$salt = createSalt(64);
$hash = crypt($password, "$6$$salt");

if (password_verify($password, $hash)) {
    echo 'Password is valid!';
} else {
    echo 'Invalid password.';
}


function createSalt($length){
    $chars = "IrhsYyLofUKj4caz0FDBCe2W9NRunTgQvp7qOXmS5GM3EJV6i8tAHdkPbxwl1Z";
    $salt="";
    for($i=0; $i < $length; $i++){
        $newchar = substr($chars, rand(0,strlen($chars)-1),1);
        $salt .= $newchar;
    }
    return $salt;
}
?>
  • 写回答

2条回答 默认 最新

  • douxun1407 2018-01-12 19:16
    关注

    The hash contains several pieces of information. This article explains the format used by Unix but I believe PHP password functions use a similar format (if not the same):

    The hash field itself is comprised of three different fields. They are separated by '$' and represent:

    • Some characters which represents the cryptographic hashing mechanism used to generate the actual hash
    • A randomly generated salt to safeguard against rainbow table attacks
    • The hash which results from joining the users password with the stored salt and running it through the hashing mechanism specified in the first field

    It can also include the exact per-algorithm options used to generate the hash, such us the algorithmic cost:

    var_dump(password_hash('foo', PASSWORD_BCRYPT, [
    'cost' => 8,
]));

    string(60) "$2y$08$7Z5bTz7xXnom8QsrbZ7uQetMLxOZ7WjuDkUYRIh73Ffa17GV1Tb7q"

    Here $2y$08$ means that Bcrypt with cost 8 was used.

    If we use the newer Argon2 available in PHP/7.2 there're even more params:

    $argon2i$v=19$m=1024,t=2,p=2$YzJBSzV4TUhkMzc3d3laeg$zqU/1IN0/AogfP4cmSJI1vc8lpXRW9/S0sYY2i2jHT0
    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(1条)

报告相同问题?

悬赏问题

  • ¥15 如何在scanpy上做差异基因和通路富集?
  • ¥20 关于#硬件工程#的问题,请各位专家解答!
  • ¥15 关于#matlab#的问题:期望的系统闭环传递函数为G(s)=wn^2/s^2+2¢wn+wn^2阻尼系数¢=0.707,使系统具有较小的超调量
  • ¥15 FLUENT如何实现在堆积颗粒的上表面加载高斯热源
  • ¥30 截图中的mathematics程序转换成matlab
  • ¥15 动力学代码报错,维度不匹配
  • ¥15 Power query添加列问题
  • ¥50 Kubernetes&Fission&Eleasticsearch
  • ¥15 報錯:Person is not mapped,如何解決?
  • ¥15 c++头文件不能识别CDialog