/etc/shadow in old format, where is salt stored?

The salt and the encrypted password are both mashed into the string YtChlvAGYzva2.

When a user picks or is assigned a password, it is encoded with a randomly generated value called the salt. This means that any particular password could be stored in 4096 different ways. The salt value is then stored with the encoded password.

When a user logs in and supplies a password, the salt is first retrieved from the stored encoded password.

The longer password strings you see with modern systems separate the hash using $. But for the older systems, it was just mashed in (Wikipedia):

Earlier versions of Unix used a password file (/etc/passwd) to store the hashes of salted passwords (passwords prefixed with two-character random salts). In these older versions of Unix, the salt was also stored in the passwd file (as cleartext) together with the hash of the salted password.

In your example, I believe that the salt is "Yt" and the encrypted password is "ChlvAGYzva2". It's literally the first two characters of the string.

gowenfawr

Posted 2014-10-06T19:50:47.353

Reputation: 1 427

Can I separate them somehow? – JohnEye – 2014-10-06T20:03:41.103

1@JohnEye Use the substring methods of your favorite script/language? – schroeder – 2014-10-06T20:09:27.470

Thank you, I was able to get the original hash using openssl passwd -crypt -salt Yu password. – JohnEye – 2014-10-06T20:09:56.130

@schroeder: I asked this before OP changed the post :-) – JohnEye – 2014-10-06T20:10:35.613

1And... what was the salt? First two characters (Yt) of the hash as stated by gowenfawr? – Aydin K. – 2016-08-30T08:26:36.533

Aside from openssl, the following python one-liner will also do: python -c 'import crypt;print(crypt.crypt("toor","X0"))' where X0 is the salt. – typelogic – 2019-02-09T16:04:40.177

/etc/shadow in old format, where is salt stored?

Answers