Forum Discussion
2 Replies
- Kevin_StewartEmployee
I believe Jeff is specifically talking about Linux local users, but generally speaking:
-
Basic auth uses base64 - not a hashing algorithm - and is browser-dependent.
-
SHA512 is an option should you need to hash something:
https://devcentral.f5.com/wiki/iRules.sha512.ashx
-
- JRahmAdmin
That could be problematic as you need the salt and hash to verify the correct password. Storing it in table space is an option, but that isn't a permanent filestore and you risk forcing password resets for everyone. If you wanted to go down that route, you'd need to generate a CSPRNG for the salt (for SHA512 it should be at least 64 bytes) and prepend that to your password before hashing with the built-in SHA512 iRules command. rand is not cryptographically secure, but perhaps now with proc support, someone wants to take on building a CSPRNG proc for iRules?