Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [day] [month] [year] [list]
Date: Sun, 22 Jul 2012 19:27:04 +0400
From: Alexander Cherepanov <cherepan@...me.ru>
To: john-dev@...ts.openwall.com
Subject: pkzip format: length of filename recorded in hash?

Hi!

I was suprised to learn that zip2john records the length of filenames in 
hashes. An example:

$ cp -a a.zip aa.zip
$ zip2john a*.zip 2> /dev/null
aa.zip:$pkzip$1*2*3*0*4f7e*9c40*5f655957*0*48*8*6*ac6f*aa.zip*$/pkzip$
a.zip:$pkzip$1*2*3*0*4f7e*9c40*5f655957*0*48*8*5*ac6f*a.zip*$/pkzip$

(the line for "aa.zip" contains "*6*", for "a.zip" -- "*5*").

The problem with this evident -- you cannot just move files and change 
paths in hashes.

Is it for a reason?

-- 
Alexander Cherepanov

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ