Q: Length of {SSHA} encoded passwords

4 Dec 2022


      Hi!
Examining changes of the database via LDIF, I noticed one thing:
-userPassword: {SSHA}XY94+nfFELR3iy0AYTsS0DHqxIOwFNz79zcnniA==
+userPassword: {SSHA}yt98Od1WHak3kYIyZWYoCewg4D+f9ffp
I had thought that the encoded SSHA passwords all have the same length.
Could it depend on the program being used to vhnage the password, thus varying the length of salt?
How could I decode that?
(not that the example is not a real one (some characters permutated), so don't waste your time trying to crack it)
Regards,
Ulrich

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

Q: Length of {SSHA} encoded passwords