Authen::Passphrase::EggdropBlowfish.3pm

Langue: en

Autres versions - même langue

Version: 2007-01-21 (ubuntu - 07/07/09)

Section: 3 (Bibliothèques de fonctions)

NAME

Authen::Passphrase::EggdropBlowfish - passphrases using Eggdrop's blowfish.mod

SYNOPSIS

         use Authen::Passphrase::EggdropBlowfish;
 
         $ppr = Authen::Passphrase::EggdropBlowfish->new(
                 hash_base64 => "9tpsG/61YqX/");
 
         $ppr = Authen::Passphrase::EggdropBlowfish->new(
                 passphrase => "passphrase");
 
         $hash = $ppr->hash;
         $hash_base64 = $ppr->hash_base64;
 
         if($ppr->match($passphrase)) { ...
 
 

DESCRIPTION

An object of this class encapsulates a passphrase hashed using the Blowfish-based algorithm used in Eggdrop's blowfish.mod. This is a subclass of "Authen::Passphrase", and this document assumes that the reader is familiar with the documentation for that class.

This hash scheme uses no salt, and does not accept a zero-length passphrase. It uses the passphrase as a Blowfish key to encrypt a standard plaintext block. The hash is the ciphertext block. The standard Blowfish key schedule only accepts keys from 8 to 56 bytes long; this algorithm relaxes that requirement and accepts any non-zero length. Up to 72 bytes of passphrase/key are significant; any more are ignored.

In Eggdrop the hash is represented as a "+`` followed by twelve base 64 digits. The first six digits encode the second half of the hash, and the last six encode the first half. Within each half the bytes are encoded in reverse order. The base 64 digits are ''.``, ''/``, ''0`` to ''9``, ''a`` to ''z``, ''A`` to ''Z" (in that order).

Note: Due to the Blowfish key length restriction being strictly enforced in "Crypt::Blowfish", this module currently "die"s if given a passphrase longer than 56 bytes. This limitation will be corrected in a future version. Passphrases shorter than 8 bytes are correctly handled despite Blowfish rules.

Warning: The hash is small by modern standards, and the lack of salt is a weakness in this scheme. For a scheme that makes better use of Blowfish see Authen::Passphrase::BlowfishCrypt.

CONSTRUCTOR

Authen::Passphrase::EggdropBlowfish->new(ATTR => VALUE, ...)
Generates a new passphrase recogniser object using the Eggdrop blowfish.mod algorithm. The following attributes may be given:
hash
The hash, as a string of eight bytes.
hash_base64
The hash, as a string of twelve base 64 digits.
passphrase
A passphrase that will be accepted.

Either the hash or the passphrase must be given.

METHODS

$ppr->hash
Returns the hash value, as a string of eight bytes.
$ppr->hash_base64
Returns the hash value, as a string of twelve base 64 digits.
$ppr->match(PASSPHRASE)
This method is part of the standard "Authen::Passphrase" interface.

SEE ALSO

Authen::Passphrase, Crypt::Blowfish

AUTHOR

Andrew Main (Zefram) <zefram@fysh.org> Copyright (C) 2006, 2007 Andrew Main (Zefram) <zefram@fysh.org>

This module is free software; you can redistribute it and/or modify it under the same terms as Perl itself.