Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 7 Jan 2013 01:39:00 +0100
From: Frank Dittrich <frank_dittrich@...mail.com>
To: john-dev@...ts.openwall.com
Subject: Re: Mask mode (was Password Generation on GPU)

On 01/06/2013 11:53 PM, jfoug@....net wrote:
> 3.   elite might be much faster to do with a mask, than with rules.  In this mode, a word would be read, then the elite mask generated, then the mask 'run'.    This would require ability to have dynamic character sets. Right now, there us upper, lower and digit.  We might need one  call ?@  that is 'aA@... ?o that is 0oO, ?s that is sS$ etc.  Then p?@...sw?ord would allow elite.   The nice thing about this is getting things like password, pas$word, pa$sword and pa$$word all working.  Doing that with JtR's current rules is not easy (especially the middle 2 of those words).  But with a mask, this is trivial. 

I would suggest not to mix l33t mode and mask mode.
Instead, --rules and --mask could use the same character classes.

L33t mode could use a separate config file, each line containing the
original character, followed by possible replacements
aA@4
iI!1
lL17
sS$5

This is more flexible, and allows easy adjustments.

Frank

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ