NAME¶
Authen::Passphrase::NTHash - passphrases using the NT-Hash algorithm
SYNOPSIS¶
use Authen::Passphrase::NTHash;
$ppr = Authen::Passphrase::NTHash->new(
hash_hex => "7f8fe03093cc84b267b109625f6bbf4b");
$ppr = Authen::Passphrase::NTHash->new(
passphrase => "passphrase");
$ppr = Authen::Passphrase::NTHash->from_crypt(
'$3$$7f8fe03093cc84b267b109625f6bbf4b');
$ppr = Authen::Passphrase::NTHash->from_rfc2307(
'{MSNT}7f8fe03093cc84b267b109625f6bbf4b');
$hash = $ppr->hash;
$hash_hex = $ppr->hash_hex;
if($ppr->match($passphrase)) { ...
$passwd = $ppr->as_crypt;
$userPassword = $ppr->as_rfc2307;
DESCRIPTION¶
An object of this class encapsulates a passphrase hashed using the NT-Hash
function. This is a subclass of Authen::Passphrase, and this document assumes
that the reader is familiar with the documentation for that class.
The NT-Hash scheme is based on the MD4 digest algorithm. Up to 128 characters of
passphrase (characters beyond the 128th are ignored) are represented in
Unicode, and hashed using MD4. No salt is used.
Warning: MD4 is a weak hash algorithm by current standards, and the lack
of salt is a design flaw in this scheme. Use this for compatibility only, not
by choice.
CONSTRUCTORS¶
- Authen::Passphrase::NTHash->new(ATTR => VALUE,
...)
- Generates a new passphrase recogniser object using the
NT-Hash algorithm. The following attributes may be given:
- hash
- The hash, as a string of 16 bytes.
- hash_hex
- The hash, as a string of 32 hexadecimal digits.
- passphrase
- A passphrase that will be accepted.
Either the hash or the passphrase must be given.
- Authen::Passphrase::NTHash->from_crypt(PASSWD)
- Generates a new NT-Hash passphrase recogniser object from a
crypt string. Two forms are accepted. In the first form, the he crypt
string must consist of " $3$$" (note the
extra " $") followed by the hash in lowercase
hexadecimal. In the second form, the he crypt string must consist of
" $NT$" followed by the hash in lowercase
hexadecimal.
- Authen::Passphrase::NTHash->from_rfc2307(USERPASSWORD)
- Generates a new NT-Hash passphrase recogniser object from
an RFC 2307 string. Two forms are accepted. In the first form, the string
must consist of " {MSNT}" followed by the hash in
hexadecimal; case is ignored. In the second form, the string must consist
of " {CRYPT}" (case insensitive) followed by an
acceptable crypt string.
METHODS¶
- $ppr->hash
- Returns the hash value, as a string of 16 bytes.
- $ppr->hash_hex
- Returns the hash value, as a string of 32 hexadecimal
digits.
- $ppr->match(PASSPHRASE)
- $ppr->as_crypt
- $ppr->as_rfc2307
- These methods are part of the standard Authen::Passphrase
interface.
SEE ALSO¶
Authen::Passphrase, Digest::MD4
AUTHOR¶
Andrew Main (Zefram) <zefram@fysh.org>
COPYRIGHT¶
Copyright (C) 2006, 2007, 2009, 2010, 2012 Andrew Main (Zefram)
<zefram@fysh.org>
LICENSE¶
This module is free software; you can redistribute it and/or modify it under the
same terms as Perl itself.