Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 30 Oct 2012 21:55:46 -0400
From: Rich Rumble <richrumble@...il.com>
To: john-dev@...ts.openwall.com
Subject: Re: Re: Office <=2003 format

On Tue, Oct 30, 2012 at 8:02 PM, magnum <john.magnum@...hmail.com> wrote:
> I am considering implementing oldoffice in OpenCL. This will be easy enough
> but I would prefer splitting it into two different formats - one for MD5 and
> another for SHA1. But what would I call them? When did they switch to SHA1?
> It seems all Office 2003 test files are using SHA1.
That's right, it changed in (office)2003 to a more secure default. The
rounds changed between 2007 and 2010 I believe (from 1k to 50k).
http://blogs.msdn.com/b/david_leblanc/archive/2008/07/03/office-crypto-follies.aspx
I'd call the old "weak" encryption MS_OFFICE_RC4, I think the md5 is
the last part of the encryption and the RC4 the "main part" no? It's
typically referred to as RC4
http://blogs.msdn.com//b/david_leblanc/archive/2010/04/16/don-t-use-office-rc4-encryption-really-just-don-t-do-it.aspx
It appears they change the crypto with SP's
http://blogs.msdn.com//b/david_leblanc/archive/2009/05/20/office-2007-sp2-encryption-settings.aspx
(I've not changed the defaults in those example files, I may add some :)
http://blogs.msdn.com//b/david_leblanc/archive/2008/12/04/new-improved-office-crypto.aspx
-rich

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ