From the Crypt
[1/5] from: allenk::powerup::com::au at: 29-Aug-2001 7:16
Hi all,
I need an answer asap on this one...
I've got some files coming from an NT IIS server (that does not have REBOL
on it), the files are being encrypted by a server side tool to output files
(as the blurb says) in Unix Crypt format.
Q.1 Can I unencrypt this using Command or View/pro on a client windows
machine? (given I have the correct passwords)
Q.2 How?
Any help greatly appreciated.
Cheers,
Allen K
[2/5] from: ryanc:iesco-dms at: 28-Aug-2001 14:25
Worst case, here is a link to the source:
http://www.ecst.csuchico.edu/~atman/Crypto/code/crypt-c.html
--Ryan
Allen Kamp wrote:
> Hi all,
> I need an answer asap on this one...
<<quoted lines omitted: 11>>
> [rebol-request--rebol--com] with "unsubscribe" in the
> subject, without the quotes.
--
Ryan Cole
Programmer Analyst
www.iesco-dms.com
707-468-5400
[3/5] from: holger:rebol at: 28-Aug-2001 15:52
On Wed, Aug 29, 2001 at 07:16:25AM +1000, Allen Kamp wrote:
> Hi all,
> I need an answer asap on this one...
<<quoted lines omitted: 3>>
> Q.1 Can I unencrypt this using Command or View/pro on a client windows
> machine? (given I have the correct passwords)
Crypt format can never be unencrypted. crypt() is a one-way function
for password encryption. The way Unix checks passwords is that the
password entered by the user is encrypted using crypt() and then the
two encrypted versions are compared. You cannot go back from an
encrypted version to the unencrypted version.
--
Holger Kruse
[holger--rebol--com]
[4/5] from: holger:rebol at: 28-Aug-2001 16:00
On Tue, Aug 28, 2001 at 02:25:55PM -0700, Ryan Cole wrote:
> Worst case, here is a link to the source:
>
> http://www.ecst.csuchico.edu/~atman/Crypto/code/crypt-c.html
That does not look like the source code to crypt(). I don't see the
function crypt() in it anywhere, and the method seems all wrong.
The exact implementation of crypt() varies widely across Unix versions.
The most common variant uses DES with a fixed "cleartext" and a variable
key
for one-way encryption. This is what programs that transfer
crypt()ed passwords across TCP links (e.g. CVS) usually use.
There are variations on the length and kind of "salt" used for that.
One other variation of crypt() use MD5, another one uses a combination
of base-64 encoding, Blowfish and ARCFOUR. Most Unix versions have
kernel options or other flags to enable one of these different methods
for their password database.
REBOL/Command supports all of these algorithms, so it should be possible
to use REBOL/Command to encrypt data in a compatible manner. Decryption
is impossible because of the one-way nature of crypt().
One source of Unix encryption C source code (crypt() and others) is
/pub/OpenBSD/src/lib/libc/crypt
on "ftp.openbsd.org".
--
Holger Kruse
[holger--rebol--com]
[5/5] from: ryanc:iesco-dms at: 28-Aug-2001 16:28
Oops! Sorry for any confusion! --Ryan
Holger Kruse wrote:
> On Tue, Aug 28, 2001 at 02:25:55PM -0700, Ryan Cole wrote:
> > Worst case, here is a link to the source:
<<quoted lines omitted: 23>>
> [rebol-request--rebol--com] with "unsubscribe" in the
> subject, without the quotes.
--
Ryan Cole
Programmer Analyst
www.iesco-dms.com
707-468-5400
Notes
- Quoted lines have been omitted from some messages.
View the message alone to see the lines that have been omitted