diff options
| author | Roderick Schertler <roderick@argon.org> | 1998-09-09 20:32:17 -0400 |
|---|---|---|
| committer | Gurusamy Sarathy <gsar@cpan.org> | 1998-09-23 10:12:22 +0000 |
| commit | e71965beff694bc98c9ae45ee14f91c321298f5b (patch) | |
| tree | 300fab5906a03af380b5c7b33bce88e41189232d /pod/perlfunc.pod | |
| parent | d3e00f1c98d622b55bdce2e46f0d1c0024daafe4 (diff) | |
| download | perl-e71965beff694bc98c9ae45ee14f91c321298f5b.tar.gz | |
doc update for crypt()'s salt
Message-ID: <21142.905401937@eeyore.ibcinc.com>
p4raw-id: //depot/perl@1846
Diffstat (limited to 'pod/perlfunc.pod')
| -rw-r--r-- | pod/perlfunc.pod | 12 |
1 files changed, 9 insertions, 3 deletions
diff --git a/pod/perlfunc.pod b/pod/perlfunc.pod index 2d7b25188b..b20981ddef 100644 --- a/pod/perlfunc.pod +++ b/pod/perlfunc.pod @@ -675,19 +675,25 @@ eggs to make an omelette. There is no (known) corresponding decrypt function. As a result, this function isn't all that useful for cryptography. (For that, see your nearby CPAN mirror.) +When verifying an existing encrypted string you should use the encrypted +text as the salt (like C<crypt($plain, $crypted) eq $crypted>). This +allows your code to work with the standard C<crypt()> and with more +exotic implementations. When choosing a new salt create a random two +character string whose characters come from the set C<[./0-9A-Za-z]> +(like C<join '', ('.', '/', 0..9, 'A'..'Z', 'a'..'z')[rand 64, rand 64]>). + Here's an example that makes sure that whoever runs this program knows their own password: $pwd = (getpwuid($<))[1]; - $salt = substr($pwd, 0, 2); system "stty -echo"; print "Password: "; - chop($word = <STDIN>); + chomp($word = <STDIN>); print "\n"; system "stty echo"; - if (crypt($word, $salt) ne $pwd) { + if (crypt($word, $pwd) ne $pwd) { die "Sorry...\n"; } else { print "ok\n"; |