The command line interface is almost the same as the previous versions with one small difference:
It includes the ability to hash with multiple algorithms, making files more secure. You can activate this by typing letters a-h after the e for encrypt. For example, if I wanted to use algorithms a, b, and c, and my password was "blue", my command would be shacrypt eabc blue input.txt output.bin.
Although the new feature will make your SHACrypt files more secure, there are a few things to think about:
- The new files cannot be read by the older versions. However, users will simply have to download a newer version of SHACrypt to decrypt them.
- All the security features in the world combined can't do anything about weak passwords. Try to include capital and lowercase letters as well as numbers and keep your passwords at least 8 characters long. Also, don't use something like your first name as your password, as it's too easy to guess.
Try to think of something random, then mess around with the word. For example, apple could turn into ApPl3, which can still be remembered easily, but is much more secure.
Most people should stop reading here.
1.2
- Multiple hashing algorithms can be used at once:
Name
Command Line ID
File ID
SHA1
a
0x01
SHA224
b
0x02
SHA256
c
0x04
SHA384
d
0x08
SHA512
e
0x10
MD5
f
0x20
CubeHash
g
0x40
WHIRLPOOL
h
0x80
- The format has changed. Revision 2 is as follows:
Offset
Length
Description
0
3
Literal hex bytes: A7 09 C3
3
1
Encryption format revision ID (02)
4
1
Null byte (00)
5
1
Length of random data (bytes) 00 stands for 1 byte, FF is 256 bytes.
6
1-256
Random data used as a salt
7-262
1
Bitwise field of algorithms used. See above for a list.
8-263
Any
Encrypted data
- New API. See source code for details.
No comments:
Post a Comment