cdaou Posted April 6, 2016 Report Share Posted April 6, 2016 Dear all, sorry for my ignorance, but I have been trying to use a hash password in the conf file. Webui section "listen" : <IP: port> For example, 0.0.0.0:8888 will listen to any interface on the LAN at port 8888. To disable WebUI, remove this field "Login" and "Password" - allow you to set credentials. "password_hash" - allows you to enter password hash in crypt(3) format. using a plain password is easy, but I was wondering about the hashed version, 1. is it safer ? I mean does it make sense to use it or reverting it is a simple task ? 2. how can I hash a password (either in windows or an online generator as I don't have a linux machine hanging around) thanks for any help/clarification/recommandation you could provide C. Quote Link to comment Share on other sites More sharing options...
RomanZ Posted April 7, 2016 Report Share Posted April 7, 2016 It is safer - you don't have to store password in plain text. It is not reversible, although if you have weak password bruteforce is always possible There is mkpasswd command line tool for linux and its clones for Windows and OS X accordingly. There are variety of online mkpasswd clones, though can't recommend due to obvious reasons Quote Link to comment Share on other sites More sharing options...
cdaou Posted April 14, 2016 Author Report Share Posted April 14, 2016 Romanz, I fully understand the plain text issue, that's why I was looking at the hashing. thank for your answer. I will look into that and see if I can figure it out. too bad there is no wiki for that, it would really be helpfull Cheers, C Quote Link to comment Share on other sites More sharing options...
RomanZ Posted April 14, 2016 Report Share Posted April 14, 2016 @cdaou I've updated KB article so other users may find it can be done with mkpasswd tool. Quote Link to comment Share on other sites More sharing options...
cdaou Posted April 14, 2016 Author Report Share Posted April 14, 2016 Romanz, thanks for updating the KB. it probably works fine on linux, but I have yet to find a way to have it on windows. the cygwin version I get with openssh version for example does not seem to generate hash version, or I have not found how. I will update my topic if I find something. C Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.