SYNOPSIS

        use Authen::Passphrase::NTHash;

        $ppr = Authen::Passphrase::NTHash->new(
                hash_hex => "7f8fe03093cc84b267b109625f6bbf4b");

        $ppr = Authen::Passphrase::NTHash->new(
                passphrase => "passphrase");

        $ppr = Authen::Passphrase::NTHash->from_crypt(
                '$3$$7f8fe03093cc84b267b109625f6bbf4b');

        $ppr = Authen::Passphrase::NTHash->from_rfc2307(
                '{MSNT}7f8fe03093cc84b267b109625f6bbf4b');

        $hash = $ppr->hash;
        $hash_hex = $ppr->hash_hex;

        if($ppr->match($passphrase)) { ...

        $passwd = $ppr->as_crypt;
        $userPassword = $ppr->as_rfc2307;

DESCRIPTION

An object of this class encapsulates a passphrase hashed using the NT-Hash function. This is a subclass of Authen::Passphrase, and this document assumes that the reader is familiar with the documentation for that class.

The NT-Hash scheme is based on the \s-1MD4\s0 digest algorithm. Up to 128 characters of passphrase (characters beyond the 128th are ignored) are represented in Unicode, and hashed using \s-1MD4\s0. No salt is used.

Warning: \s-1MD4\s0 is a weak hash algorithm by current standards, and the lack of salt is a design flaw in this scheme. Use this for compatibility only, not by choice.

CONSTRUCTORS

Authen::Passphrase::NTHash->new(\s-1ATTR\s0 => \s-1VALUE\s0, ...)

Generates a new passphrase recogniser object using the NT-Hash algorithm. The following attributes may be given:

hash

The hash, as a string of 16 bytes.

hash_hex

The hash, as a string of 32 hexadecimal digits.

passphrase

A passphrase that will be accepted.

Either the hash or the passphrase must be given.

Authen::Passphrase::NTHash->from_crypt(\s-1PASSWD\s0)

Generates a new NT-Hash passphrase recogniser object from a crypt string. Two forms are accepted. In the first form, the he crypt string must consist of "$3$$\*(L" (note the extra \*(R"$\*(L") followed by the hash in lowercase hexadecimal. In the second form, the he crypt string must consist of \*(R"$NT$" followed by the hash in lowercase hexadecimal.

Authen::Passphrase::NTHash->from_rfc2307(\s-1USERPASSWORD\s0)

Generates a new NT-Hash passphrase recogniser object from an \s-1RFC\s0 2307 string. Two forms are accepted. In the first form, the string must consist of "{\s-1MSNT\s0}\*(L" followed by the hash in hexadecimal; case is ignored. In the second form, the string must consist of \*(R"{\s-1CRYPT\s0}" (case insensitive) followed by an acceptable crypt string.

METHODS

Returns the hash value, as a string of 16 bytes. Returns the hash value, as a string of 32 hexadecimal digits. These methods are part of the standard Authen::Passphrase interface.

RELATED TO Authen::Passphrase::NTHash…

Authen::Passphrase, Digest::MD4

AUTHOR

Andrew Main (Zefram) <[email protected]>

COPYRIGHT

Copyright (C) 2006, 2007, 2009, 2010, 2012 Andrew Main (Zefram) <[email protected]>

LICENSE

This module is free software; you can redistribute it and/or modify it under the same terms as Perl itself.