Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords

To: Tom Lane <tgl@xxxxxxxxxxxxx>
Subject: Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
From: "Jim C. Nasby" <decibel@xxxxxxxxxxx>
Date: Wed, 20 Apr 2005 16:23:23 -0500
Cc: Stephen Frost <sfrost@xxxxxxxxxxx>, pgsql-hackers@xxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: <4659.1114030998@xxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20050420165055.GQ29028@xxxxxxxxxxxxxx> <4659.1114030998@xxxxxxxxxxxxx>
User-agent: Mutt/1.5.8i

On Wed, Apr 20, 2005 at 05:03:18PM -0400, Tom Lane wrote:
> >   This would allow for the pregeneration of the entire md5
> >   keyspace using that 'salt' and then quick breakage of the hash once
> >   it's retrieved by the attacker.
> 
> Considering the size of the possible keyspace, this is pretty silly.

Actually, it's not as silly as you think. You can download rainbow
tables for Windows/LanMan passwords up to 14 or 15 characters in length.
Given the password hash and some code, you can determine the user's
password in a matter of minutes.

Simply put, MD5 is no longer strong enough for protecting secrets. It's
just too easy to brute-force. SHA1 is ok for now, but it's days are
numbered as well. I think it would be good to alter SHA1 (or something
stronger) as an alternative to MD5, and I see no reason not to use a
random salt instead of username.
-- 
Jim C. Nasby, Database Consultant               decibel@xxxxxxxxxxx 
Give your computer some brain candy! www.distributed.net Team #1828

Windows: "Where do you want to go today?"
Linux: "Where do you want to go tomorrow?"
FreeBSD: "Are you guys coming, or what?"

Follow-Ups:
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
  - From: Jim Knoble
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
  - From: Tino Wildenhain
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
  - From: Joshua D. Drake
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
  - From: Tom Lane

References:
- Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
  - From: Stephen Frost
- Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
  - From: Tom Lane

Prev by Date: Linux vsyscalls may be used as attack vectors
Next by Date: Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
Previous by thread: Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
Next by thread: Re: [HACKERS] Postgres: pg_hba.conf, md5, pg_shadow, encrypted passwords
Index(es):
- Date
- Thread