[Info-vax] What to do with my VAX.....
Arne Vajhøj
arne at vajhoej.dk
Fri Nov 20 20:10:30 EST 2020
On 11/20/2020 7:59 PM, Arne Vajhøj wrote:
> On 11/20/2020 9:46 AM, seasoned_geek wrote:
>> When the SALT has a TOD sensitivity such that between 2pm and 4pm
>> local time only the last 5 really change (what I had stumbled into
>> with some casual testing) you now only need the password. You know,
>> that's not as difficult as it sounds given the helpful pages like this:
>
> Symmetric encryption use IV not salt.
>
> And with a decent implementation all bytes should change.
And if anyone want to verify that it does.
Just do:
$ mcr ssl1$exe:openssl enc -aes-256-cbc -k MySuperSecretPassPhrase -P
-md sha1
on your favorite OS a few times.
I got:
iv =0E38C5B4A04DAD98965D95161268ECDB
iv =51D9A670DEB1BF1E56745D28A6441A3C
iv =26E6C8F59628C12A7A4EBFC3BF340727
iv =E4609B2D4AFD0B8190101A87F8CA83DB
iv =9350E05D92C0915B229048B251E3C663
They look quite different to me.
Arne
More information about the Info-vax
mailing list