Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Date: Mon, 30 Apr 2012 11:30:10 +0200
From: Frank Dittrich <frank_dittrich@...mail.com>
To: john-dev@...ts.openwall.com
Subject: Re: Password Generation on GPU

On 04/30/2012 10:57 AM, Frank Dittrich wrote:
>> Incremental mode is potentially capable of using this interface for the
>> last character position, except when it has the last character index
>> fixed (and thus alters character indices in other positions only).  For
>> example, when trying passwords of length 8, incremental mode would thus
>> be able to use set_mask() 87.5% of the time in a long-running session.
>> (The growing and reducing c/s rate may be confusing, though.)
> 
> You could even use it for the last character as well, if you add 0x00 to
> the mask.
> This would have to be done for the last position only. Preferably, you'd
> even start with the shorter password, then compute all the others.
> I am sure how much of a problem the mixed length is for GPU, but you'd
> have length switches in in incremental mode anyway.

Only if the input is an empty password, we need to try the empty
password as well.
In all other cases, this is not necessary.
(Otherwise, all candidate passwords shorter than maximum length will be
tried twice.)
This assumes that the input mask contains all possible characters.

Of course, it should be possible to use a subset of the most likely
final characters first, and use less likely final characters as a mask
in a separate session.
(The optimal minimum size of the mask probably depends on how much of a
bottleneck the memory bandwidth is.)

When we generate chr files for (maxlen-1) anyway, it would also be
possible to compute an "optimal" mask of final characters, and may be
even include this into the chr file, to be used as the default mask.

(Of course, the new chr files will then not just be suboptimal for
regular usage without masking, but even incompatible.)

Frank

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.