{"id":291,"date":"2009-04-14T20:51:25","date_gmt":"2009-04-15T02:51:25","guid":{"rendered":"http:\/\/vostorga.org\/?p=291"},"modified":"2009-04-14T20:51:25","modified_gmt":"2009-04-15T02:51:25","slug":"hash-sha512-en-etcshadow","status":"publish","type":"post","link":"https:\/\/vostorga.org\/?p=291","title":{"rendered":"Hash SHA512 en \/etc\/shadow"},"content":{"rendered":"<p>Desde la version 20080801 pambase provee la posibilidad de activar passwords\u00a0 encriptados con <a title=\"Definici\u00f3n de hash SHA en Wikipedia\" href=\"http:\/\/en.wikipedia.org\/wiki\/SHA_hash_functions\" target=\"_blank\">SHA512<\/a> en \/etc\/shadow. SHA512 provee un mar de ventajas sobre <a title=\"Definici\u00f3n de hash MD5 en Wikipedia\" href=\"http:\/\/en.wikipedia.org\/wiki\/MD5\" target=\"_blank\">MD5<\/a> el cual ha demostrado ser <a title=\"Rompiendo MD5\" href=\"http:\/\/www.win.tue.nl\/hashclash\/rogue-ca\/\" target=\"_blank\">preocupantemente\u00a0 vulnerable<\/a>.<\/p>\n<p>Para poder ocuparlo es necesario tener pambase-20081028, y tener compilado pam contra una version de glibc &gt;= 2.7.\u00a0 Para aplicar el hash en el archivo simplemente se cambia la contrase\u00f1a del usuario.<\/p>\n<p>Como saber si est\u00e1n ocupando SHA512 en \/etc\/shadow ?<\/p>\n<blockquote><p>fgrep &#8216;$1$&#8217; \/etc\/shadow<\/p><\/blockquote>\n<p>Cada l\u00ednea que muestre es un hash MD5.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Desde la version 20080801 pambase provee la posibilidad de activar passwords\u00a0 encriptados con SHA512 en \/etc\/shadow. SHA512 provee un mar de ventajas sobre MD5 el cual ha demostrado ser preocupantemente\u00a0 vulnerable. Para poder ocuparlo es necesario tener pambase-20081028, y tener compilado pam contra una version de glibc &gt;= 2.7.\u00a0 Para aplicar el hash en el [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[106,107],"class_list":["post-291","post","type-post","status-publish","format-standard","hentry","category-linux","tag-sha","tag-shadow"],"_links":{"self":[{"href":"https:\/\/vostorga.org\/index.php?rest_route=\/wp\/v2\/posts\/291"}],"collection":[{"href":"https:\/\/vostorga.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vostorga.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vostorga.org\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/vostorga.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=291"}],"version-history":[{"count":5,"href":"https:\/\/vostorga.org\/index.php?rest_route=\/wp\/v2\/posts\/291\/revisions"}],"predecessor-version":[{"id":296,"href":"https:\/\/vostorga.org\/index.php?rest_route=\/wp\/v2\/posts\/291\/revisions\/296"}],"wp:attachment":[{"href":"https:\/\/vostorga.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=291"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vostorga.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=291"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vostorga.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=291"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}