Key fingerprints (not the DNS kind)
Damien Miller
djm at mindrot.org
Mon Nov 10 12:42:21 EST 2014
On Sun, 9 Nov 2014, shawn wilson wrote:
> On Sun, Nov 9, 2014 at 7:11 PM, Damien Miller <djm at mindrot.org> wrote:
>
> That's always a good idea, but try not to reinvent the wheel too much
> here: http://hashcat.net/wiki/doku.php?id=example_hashes
> There's no m5(sha512(word)) but $foo$fpr or $foo$host$fpr should maybe
> be used?
I don't think password hashes are a good model for key fingerprints.
Password hashes are intended for consumption in password databases,
key fingerprints are intended for rapid and accurate comparison by
humans.
BTW I think md5(inner_hash(x)) is a terrible idea :)
More information about the openssh-unix-dev
mailing list