Navigation

passlib.hash.mssql2005 - MS SQL 2005 password hash

New in version 1.6.

Warning

This hash is not very secure, and should not be used for any purposes besides manipulating existing MSSQL 2005 password hashes.

This class implements the hash algorithm used by Microsoft SQL Server 2005 to store it’s user account passwords, replacing the slightly less secure mssql2000 variant. This class can be used directly as follows:

>>> from passlib.hash import mssql2005 as m25

>>> # encrypt password
>>> h = m25.encrypt("password")
>>> h
'0x01006ACDF9FF5D2E211B392EEF1175EFFE13B3A368CE2F94038B'

>>> # verify password
>>> m25.verify("password", h)
True
>>> m25.verify("letmein", h)
False

See also

Interface

class passlib.hash.mssql2005

This class implements the password hash used by MS-SQL 2005, and follows the Password Hash Interface.

It supports a fixed-length salt.

The encrypt() and genconfig() methods accept the following optional keywords:

Parameters:
  • salt (bytes) – Optional salt string. If not specified, one will be autogenerated (this is recommended). If specified, it must be 4 bytes in length.
  • relaxed (bool) – By default, providing an invalid value for one of the other keywords will result in a ValueError. If relaxed=True, and the error can be corrected, a PasslibHashWarning will be issued instead. Correctable errors include salt strings that are too long.

Format & Algorithm

MSSQL 2005 hashes are usually presented as a series of 52 upper-case hexidecimal characters, prefixed by 0x. An example MSSQL 2005 hash (of "password"):

0x01006ACDF9FF5D2E211B392EEF1175EFFE13B3A368CE2F94038B

This encodes 26 bytes of raw data, consisting of:

  • a 2-byte constant 0100
  • 4 byte of salt (6ACDF9FF in the example)
  • 20 byte digest (5D2E211B392EEF1175EFFE13B3A368CE2F94038B in the example).

The digest is generated by encoding the unicode password using UTF-16-LE, and calculating SHA1(encoded_secret + salt).

This format and algorithm is identical to mssql2000, except that this hash omits the 2nd case-insensitive digest used by MSSQL 2000.

Note

MSSQL 2005 hashes do not actually have a native textual format, as they are stored as raw bytes in an SQL table. However, when external programs deal with them, MSSQL generally encodes raw bytes as upper-case hexidecimal, prefixed with 0x. This is the representation Passlib uses.

Security Issues

This algorithm is reasonably weak, and shouldn’t be used for any purpose besides manipulating existing MSSQL 2005 hashes. This mainly due to it’s simplicity, and years of research on high-speed SHA1 implementations, which makes efficient brute force attacks feasible.

Footnotes

[1]Overview hash algorithms used by MSSQL - https://blogs.msdn.com/b/lcris/archive/2007/04/30/sql-server-2005-about-login-password-hashes.aspx?Redirected=true.
[2]Description of MSSQL 2000/2005 algorithm - http://www.theregister.co.uk/2002/07/08/cracking_ms_sql_server_passwords/.

Table Of Contents

Previous topic

passlib.hash.mssql2000 - MS SQL 2000 password hash

Next topic

passlib.hash.mysql323 - MySQL 3.2.3 password hash

This Page

Navigation

© Copyright 2008-2013, Assurance Technologies, LLC. Created using Sphinx 1.1.3+/2edd437ef8c9.