lcp / mokutil

The utility to manipulate machine owner keys
GNU General Public License v3.0
70 stars 38 forks source link

Is it safer to fix the salt length to 16? #44

Open wsp1991 opened 3 years ago

wsp1991 commented 3 years ago

uint16_t 82 get_salt_size (int method) { 83 switch (method) { 84 case TRADITIONAL_DES: 85 return T_DES_SALT_MAX; 86 case EXTEND_BSDI_DES: 87 return E_BSI_DES_SALT_MAX; 88 case MD5_BASED: 89 return MD5_SALT_MAX; 90 case SHA256_BASED: 91 case SHA512_BASED: 92 return gen_salt_size(8,16); 93 case BLOWFISH_BASED: 94 return BLOWFISH_SALT_MAX; 95 } 96 97 return -1; 98 }

salt is in plaintext,Is it safer to fix the salt length to 16?