The hashing algorithm used in the /opt/aerospike/smd/security.smd

Greetings, Could someone please tell me how the hash is generated in the “value” field of the security.smd file, which contains the password hash of any user in the cluster.

Is it actually a hash that is irreversable, or is it an encryption that is reversable?

How secure is it to have the security.smd files visible to cross teams or developers, who aren’t supposed to know the passwords of users? Will one be able to decrypt the password from the security.smd?

Thank you

1 Like

They’re hashes, but you should still secure a file with password hashes.

1 Like

okay, thank you. yes, I was aware of the Knowledge base article that you have linked.

© 2021 Copyright Aerospike, Inc. | All rights reserved. Creators of the Aerospike Database.