As
LanX says, just to clarify:
D:\>perl -e "print crypt('foo', 'bar');"
ba4TuD1iozTxw # note the hash starts with
+ba
D:\>perl -e "print crypt('foo', 'ba');" # same as above
ba4TuD1iozTxw
D:\>perl -e "print crypt('foo', 'b4r');" # and this one starts with b
+4
b4aMdyw.oyhyI
D:\>perl -e "print crypt('foo', 'b4');" # and this one starts with b
+4
b4aMdyw.oyhyI
Hence feeding a crypted value as salt into
crypt is eqivalent to using the original salt.
holli
You can lead your users to water, but alas, you cannot drown them.