Where is the per-user salt kept?

password encryption

Where does Ubuntu keep the password salt for each user?


Solution 1:

From the manual page of shadow(5):

Each line of this file contains 9 fields, separated by colons (“:”), in the following order:

[..] encrypted password
Refer to crypt(3) for details on how this string is interpreted.

Alright, let's have a look at man 3 crypt then. From the notes section:

[..] So $5$salt$encrypted is an SHA-256 encoded password and $6$salt$encrypted is an SHA-512 encoded one.

"salt" stands for the up to 16 characters following "$id$" in the salt. The encrypted part of the password string is the actual computed password.

So, the salt is stored in the password field of /etc/shadow itself. For more details, have a look at the manual page of crypt(3).

Related

Why did Adobe stop Flash Player for Linux? [duplicate]
Where can I get the source code for "Ubuntu for phones"?
How can I programmatically determine if a system is a desktop or a server?
How to capture desktop sounds (Pulse Audio output) from avconv?
Terminal alternative to gnome-keyring
Laptop-friendly alternatives to Unity window-placement shortcuts
sudo: unable to stat /etc/sudoers: No such file or directory - File Exists
How do I regain access to my encrypted home directory after changing my password?
USB headphones get muted when setting volume below a certain threshold
How to create a dual-boot pen-drive supporting UEFI and Legacy BIOS
upgrade process stuck while Preparing to unpack .../mysql-server-5.7_5.7.12-0ubuntu1.1_amd64.deb
No output from service start/stop/restart command