Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.server -> Re: cracking Oracle passwds
Greg Tupper wrote:
> The method 2 is what I would like to try. Does oracle used the same hash
> algorythm as Unix to encrypt passwords? If not, what is the hashing
> algorythm they use? I would not be against putting some time into a perl to
> encrypt strings for comparison.
Oracle does not use the same hash as unix (and /etc/passwd file will appear as 'oracle:0eZAstx5P7Efo:503:100:Oracle 8 Default User:/home/oracle:/bin/bash' while an oracle password will appear as SYSTEM 875A762C2325A1CK). Oracle cannot generate lower case passwords, and the storage is 16 characters. Unix crypts it password using the password and a 2 character 'salt' and stores it in mixed case.
However, I don't know the algorythm used by oracle to create it's passwords.
Cheers,
GC
Received on Thu Mar 09 2000 - 00:00:00 CST