Either. If one doesn't work, that's a bug (or there's an extra space in the password).
HashedControlPassword contains algorithm,salt,hash(algorithm,salt,password) The password is hashed with the salt using an algorithm, and the hash is matched against hash(algorithm,salt,password).
*because* it uses a different salt every time. This protects against rainbow tables, which contain hashes of common password strings (or in some cases, all sufficiently short strings). |
_______________________________________________ tor-relays mailing list tor-relays@xxxxxxxxxxxxxxxxxxxx https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-relays