Open Jackey1024 opened 3 years ago
Function crypt_make_pw_salt in libbb/pw_encrypt.c file may not be safe. It generates salt from nanosecond values of system time and pid. It could be cracked.
Function crypt_make_pw_salt in libbb/pw_encrypt.c file may not be safe. It generates salt from nanosecond values of system time and pid. It could be cracked.