Re: Netscape Ldap ldif file SHA password cracking

From: Anders Thulin (Anders.Thulin@tietoenator.com)
Date: Wed Dec 01 2004 - 01:56:02 EST

• Next message: Jonas Hansen: "fuzzing xinetd services"
• Previous message: Marchand, Tom: "RE: check the presence of a reverse proxy"
• In reply to: m a: "Netscape Ldap ldif file SHA password cracking"
• Next in thread: miguel.dilaj@pharma.novartis.com: "Re: Netscape Ldap ldif file SHA password cracking"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

m a wrote:

> I tried John the Ripper (http://www.openwall.com//john/) patching with the Netscape
>diff files and recompiling. I basically put a SHA hash like the above in a txt file
and fed into john
>
> john -format:SHA hash.txt

   It's difficult to say, without seeing the file. You have to follow the
format of a typical Unix password file, or john will ignore the lines:

   :{SHA}hEqt9R50vHZ+EheHW+JOJKvNWpw=:::::::
   :{SHA}+A0MoQHpZ7ULcw3fjorKDehejfY=:::::::

   You don't have to tell JtR the format: as there is only
one type of password in the file, that's what it will crack.

   You say john ignored your file ... that suggests it was
badly formed. If you got some explicit message, it would help
knowing what it said.

-- 
Anders Thulin   anders.thulin@tietoenator.com   040-661 50 63	
TietoEnator Telecom & Media AB, Box 85, SE-201 20 Malmö

• Next message: Jonas Hansen: "fuzzing xinetd services"
• Previous message: Marchand, Tom: "RE: check the presence of a reverse proxy"
• In reply to: m a: "Netscape Ldap ldif file SHA password cracking"
• Next in thread: miguel.dilaj@pharma.novartis.com: "Re: Netscape Ldap ldif file SHA password cracking"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:09 EDT