What kind of algorithm does .htpasswd uses?

encryption hash htpasswd cryptography .htpasswd
8,440

It's CRYPT encryption - an old default. You should probably use MD5 or SHA instead - see man htpasswd for more information.

How are you trying to generate your passwords? You could run htpasswd -n -b username password, but most languages probably have a library function for that already.

Perl example:

perl -e 'print crypt("passwordgoeshere","salt") . "\n"'

The second parameter is the salt. As Gerard points out it's better to use a random string as salt.

Share:
8,440
trevhas
Author by

trevhas

Updated on September 18, 2022

Comments

  • trevhas
    trevhas over 1 year

    I am trying to generate this kind of hashes programmatically:

    axF3s9cdEnsNP

    But I can't identify what kind of hash it is. The hash comes from a .htpasswd file.

    All the online htpasswd generators I tried generates different type of hashes.

  • Denys
    Denys about 13 years
    This is REALLY insecure. Part of your unencrypted password will show up in the returned digest (in this case it's the "pa" in "papAq5PwY/QQM"). You should use random characters instead: dev.perl.org/perl6/rfc/208.html

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Fundamental difference between Hashing and Encryption algorithms
Adding a salt to .htpasswd?
Salt and hashing, why not use username?
UI lags during heavy computation operation in Flutter even with async
PS256 signing in Flutter / Dart
Flutter - client side encryption of user data
Encrypted in Java and Decrypting in dart flutter
How to find reverse of pow(a,b,c) in python?
How to properly store a PBKDF2 password hash
Produce MD5 or SHA1 hash code to long (64 bits)