Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 23 Jan 2013 10:26:05 -0500
From:  <jfoug@....net>
To: john-dev@...ts.openwall.com
Cc: Frank Dittrich <frank_dittrich@...mail.com>
Subject: Re: Min password length

---- Frank Dittrich <frank_dittrich@...mail.com> wrote: 
> On 01/23/2013 02:45 PM, jfoug@....net wrote:
> > What about formats which have a min password length?  Do we have a mechanism to tell JtR to not try any words that are shorter than X bytes long?  I know we have external filters to force this, but that is not the question.  Do we have a way to automatically do this?
> > 
> > There are algorithms that specify minimal, so trying words less than the min length is a total waste of resources.
> 
> What formats are affected?

WPAPSK or sure.  In it's specification, it lists 8 character PW min.
 
> Do you know for sure that older versions of the OS or application didn't
> allow shorter passwords?

Yes, it is spec'd to this.  I do not believe any router or other AP will allow a pass to be set < 8 chars.

Jim.

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ