https://community.splunk.com/t5/Security/Local-Splunk-Authentication/m-p/33818#M1131 <P>Splunk uses the standard UNIX password file format also found in /etc/passwd and /etc/shadow on most UNIX systems, using crypt() with MD5 as hashing algorithm for storing hashes of salted passwords. You can have a look at the password file yourself (if you have the appropriate access of course), it is stored in $SPLUNK_HOME/etc/passwd.</P> Fri, 24 Jun 2011 09:36:57 GMT Ayn 2011-06-24T09:36:57Z https://community.splunk.com/t5/Security/Local-Splunk-Authentication/m-p/33817#M1130 <P>What is the full mechanism of the local Splunk authentication? What hashing algorithm does it use? Does it use a salt? Where does it keep this information? etc.</P> Fri, 24 Jun 2011 06:31:29 GMT https://community.splunk.com/t5/Security/Local-Splunk-Authentication/m-p/33817#M1130 fman82 2011-06-24T06:31:29Z https://community.splunk.com/t5/Security/Local-Splunk-Authentication/m-p/33818#M1131 <P>Splunk uses the standard UNIX password file format also found in /etc/passwd and /etc/shadow on most UNIX systems, using crypt() with MD5 as hashing algorithm for storing hashes of salted passwords. You can have a look at the password file yourself (if you have the appropriate access of course), it is stored in $SPLUNK_HOME/etc/passwd.</P> Fri, 24 Jun 2011 09:36:57 GMT https://community.splunk.com/t5/Security/Local-Splunk-Authentication/m-p/33818#M1131 Ayn 2011-06-24T09:36:57Z