Password Encryption
I have inherited a database that is throwing me for a loop. Each user in this database has a "Password" and a "HashedPassword". I changed my password to "Testing" and discovered that the database stores the password like the following:
Original: "Testing"
Password Field: 211216058087052117197079019018007020147229039085161161
Hashed Password: 16e118ce2fd9e0cebda251af3a24fd6c5b6578ab
I was able to reverse engineer it to discover that the "Hashed Password" is generated using SHA1 encryption. My problem is, I can't figure out what is used for just the "Password Field". Can anyone give me any ideas of how to determine how the "Password Field" is generated开发者_JS百科? Can anyone look at this and tell me?
Thanks!
If you don't have the original source, but do have a copy of the application and it's written in .net, then use Reflector to disassemble the application to review the code the original dev was using to store the passwords.
精彩评论