List:General Discussion« Previous MessageNext Message »
From:Ed Carp Date:March 22 1999 3:45pm
Subject:Re: user database question
View as plain text  
>Why does mysql use the same salt everytime it encrypts
>a user password inserted into the user database with
>the GRANT... command?
>
>(at least it seems to do so -- 2 users with the same
> password gets the same password entry in the
> "user" datasbase)


It doesn't.  In fact, it doesn't use the crypt() function at all - it uses a
variant of XOR, which is trivial to break.

Thread
user database questionMagnus Stenman22 Mar
  • Re: MySQL 3.23.31 configure fails with Berkeley DB 3.2.3hThimble Smith19 Jan
  • Re: MySQL 3.23.31 configure fails with Berkeley DB 3.2.3hGreg Cope19 Jan
Re: user database questionEd Carp22 Mar
  • Re: user database questionMichael Widenius23 Mar
RE: MySQL 3.23.31 configure fails with Berkeley DB 3.2.3hIrena Ivanisevic19 Jan
  • RE: MySQL 3.23.31 configure fails with Berkeley DB 3.2.3hSinisa Milivojevic19 Jan