cpython/Doc/lib/libcrypt.tex

\section{\module{crypt} ---
         Function to check \UNIX{} passwords}

\declaremodule{builtin}{crypt}
  \platform{Unix}
\modulesynopsis{The \cfunction{crypt()} function used to check
  \UNIX\ passwords.}
\moduleauthor{Steven D. Majewski}{sdm7g@virginia.edu}
\sectionauthor{Steven D. Majewski}{sdm7g@virginia.edu}
\sectionauthor{Peter Funk}{pf@artcom-gmbh.de}


This module implements an interface to the
\manpage{crypt}{3}\index{crypt(3)} routine, which is a one-way hash
function based upon a modified DES\indexii{cipher}{DES} algorithm; see
the \UNIX{} man page for further details.  Possible uses include
allowing Python scripts to accept typed passwords from the user, or
attempting to crack \UNIX{} passwords with a dictionary.

\begin{funcdesc}{crypt}{word, salt} 
  \var{word} will usually be a user's password as typed at a prompt or 
  in a graphical interface.  \var{salt} is usually a random
  two-character string which will be used to perturb the DES algorithm
  in one of 4096 ways.  The characters in \var{salt} must be in the
  set \regexp{[./a-zA-Z0-9]}.  Returns the hashed password as a
  string, which will be composed of characters from the same alphabet
   as the salt (the first two characters represent the salt itself).
\end{funcdesc}


A simple example illustrating typical use:

\begin{verbatim}
import crypt, getpass, pwd

def login():
    username = raw_input('Python login:')
    cryptedpasswd = pwd.getpwnam(username)[1]
    if cryptedpasswd:
        if cryptedpasswd == 'x' or cryptedpasswd == '*': 
            raise "Sorry, currently no support for shadow passwords"
        cleartext = getpass.getpass()
        return crypt.crypt(cleartext, cryptedpasswd[:2]) == cryptedpasswd
    else:
        return 1
\end{verbatim}
New section header style. Fix up a few synopses. 1998-08-10 16:42:37 -03:00			`\section{\module{crypt} ---`
Merged changes from the 1.5.2p2 release. (Very rough.) 2000-04-03 17:13:55 -03:00			`Function to check \UNIX{} passwords}`
Adjusted to use the new module synopsis support macros. 1998-07-23 14:59:49 -03:00
Added \platform annotations. 1999-03-02 12:37:17 -04:00			`\declaremodule{builtin}{crypt}`
"\platform{UNIX}" should really be spelled "\platform{Unix}". 1999-03-02 13:03:42 -04:00			`\platform{Unix}`
Merged changes from the 1.5.2p2 release. (Very rough.) 2000-04-03 17:13:55 -03:00			`\modulesynopsis{The \cfunction{crypt()} function used to check`
Work around limitations of the module synopsis table generation to avoid leaking LaTeX2HTML's internal string munging. This fixes SF bug #420399. 2001-05-09 12:50:17 -03:00			`\UNIX\ passwords.}`
Added \platform annotations. 1999-03-02 12:37:17 -04:00			`\moduleauthor{Steven D. Majewski}{sdm7g@virginia.edu}`
			`\sectionauthor{Steven D. Majewski}{sdm7g@virginia.edu}`
Merged changes from the 1.5.2p2 release. (Very rough.) 2000-04-03 17:13:55 -03:00			`\sectionauthor{Peter Funk}{pf@artcom-gmbh.de}`
Adjusted to use the new module synopsis support macros. 1998-07-23 14:59:49 -03:00
Added lost docs for crypt module. 1996-04-10 13:18:20 -03:00
Merged changes from the 1.5.2p2 release. (Very rough.) 2000-04-03 17:13:55 -03:00			`This module implements an interface to the`
			`\manpage{crypt}{3}\index{crypt(3)} routine, which is a one-way hash`
			`function based upon a modified DES\indexii{cipher}{DES} algorithm; see`
			`the \UNIX{} man page for further details. Possible uses include`
Added lost docs for crypt module. 1996-04-10 13:18:20 -03:00			`allowing Python scripts to accept typed passwords from the user, or`
Normalized the word "Unix" to "\UNIX{}". Changed "{\tt crypt}" to "\sectcode{crypt}" in section heading. 1997-12-29 13:31:22 -04:00			`attempting to crack \UNIX{} passwords with a dictionary.`
Added lost docs for crypt module. 1996-04-10 13:18:20 -03:00
Change "\," to just "," in function signatures. This is easier to maintain, works better with LaTeX2HTML, and allows some simplification of the python.sty macros. 1998-03-17 02:33:25 -04:00			`\begin{funcdesc}{crypt}{word, salt}`
Merged changes from the 1.5.2p2 release. (Very rough.) 2000-04-03 17:13:55 -03:00			`\var{word} will usually be a user's password as typed at a prompt or`
			`in a graphical interface. \var{salt} is usually a random`
			`two-character string which will be used to perturb the DES algorithm`
			`in one of 4096 ways. The characters in \var{salt} must be in the`
			`set \regexp{[./a-zA-Z0-9]}. Returns the hashed password as a`
			`string, which will be composed of characters from the same alphabet`
			`as the salt (the first two characters represent the salt itself).`
Added lost docs for crypt module. 1996-04-10 13:18:20 -03:00			`\end{funcdesc}`

Merged changes from the 1.5.2p2 release. (Very rough.) 2000-04-03 17:13:55 -03:00
			`A simple example illustrating typical use:`

			`\begin{verbatim}`
			`import crypt, getpass, pwd`

			`def login():`
			`username = raw_input('Python login:')`
			`cryptedpasswd = pwd.getpwnam(username)[1]`
			`if cryptedpasswd:`
			`if cryptedpasswd == 'x' or cryptedpasswd == '*':`
			`raise "Sorry, currently no support for shadow passwords"`
			`cleartext = getpass.getpass()`
			`return crypt.crypt(cleartext, cryptedpasswd[:2]) == cryptedpasswd`
			`else:`
			`return 1`
			`\end{verbatim}`