john-users - Re: What type of passwords does john crack?

Follow @Openwall on Twitter for new release announcements and other news

[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]

Message-ID: <263f59e00801251439m6af013e3mb4de909c432c8d8d@mail.gmail.com>
Date: Fri, 25 Jan 2008 17:39:52 -0500
From: "Steve ......" <lynx.9595@...il.com>
To: john-users@...ts.openwall.com
Subject: Re: What type of passwords does john crack?

dont bother with this below appertenly my perl script was cutting of 1
char!.. sigh. anyways using DES or raw-MD5 appertenly there are no weak
passwords cause none of them were cracked, YET.
Steve

On Jan 25, 2008 4:45 PM, Steve ...... <lynx.9595@...il.com> wrote:

>  hmm it appears all these passwords are 31 characters. I guess that
> basically means john wont do anything with it?
> actually I grabbed the code from which these "MD5" passwords are created
> from..
>
> // MD5 Encryption
>
> function md5_hmac($data, $key)
>
> {
>
> if (strlen($key) > 64)
>
> $key = pack('H*', md5($key));
>
> $key = str_pad($key, 64, chr(0x00));
>
> $k_ipad = $key ^ str_repeat(chr(0x36), 64);
>
> $k_opad = $key ^ str_repeat(chr(0x5c), 64);
>
> return md5($k_opad . pack('H*', md5($k_ipad . $data)));
>
> }
>
> appertenly it says there MD5's?!?!...
>

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.