[j-nsp] Unscramble authentication-key

variable at ednet.co.uk variable at ednet.co.uk
Mon Apr 19 10:08:45 EDT 2004


On Mon, 19 Apr 2004, Streiner, Justin wrote:

> On Mon, 19 Apr 2004, Robert Kiessling wrote:
> 
> > in order to do a comparison between configured MD5 secrets and a
> > database, we need to decode the $9$ scrambeled authentication-keys.
> >
> > What's the algorithm for this?
> 
> I don't think there is one.  The brute-force method would be to find/write
> something that encrypts a potential secret, and if the encrypted result
> matches your actual encrypted secret, you have a match.

If they've got the secret in a database already then surely it's just a
case of copying the MD5 algorithm on that value and comparing the
encrypted values?

Cheers,

Rich



More information about the juniper-nsp mailing list