Password database reuse, AES-128-CBC

[Cheetah]

My aim is to replicate Parallels Plesk's user credentials and use them in other application. Is it possible to check the password against those encrypted ones using Python? The password strings look pretty much like this..

$AES-128-CBC$gYaHmLSudopaSnqLhlNpwg==$4ONXDulV7Kp2vS2eelcKijQv3WEhALAOdfsKECiQ5E=

This string is fake, of course.

My aim is to periodically replicate the credentials from database to another, then use them in other applications.

So, how can I check the credentials using for example Python?

-j

 

[Nikolay.]

It might help Parallels staff to improve encrypted passwords feature if you explained your use case in detail.

That said, password string is self explaining on how to check against it. Much like crypt(3).

 

[Cheetah]

Just knowing libraries or tools to check passwords against those encrypted strings would be helpful. Dunno where to look at.