Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Fri, 08 Feb 2013 22:50:17 -0200
From: Claudio André <claudioandre.br@...il.com>
To: john-dev@...ts.openwall.com
Subject: Re: sha512crypt formats matching salt detection bug

Em 08-02-2013 22:45, Solar Designer escreveu:
> magnum, all -
>
> for n in {1..999}; do echo "\$6\$rounds=$n\$aXayEJGxA02Bl4d2\$TWfWx34oD.UjrS/Qtco6Ij2XPY1CPYJfdk3CcxEjnMZvQw2p5obHYH7SI2wxcJgaS9.S9Hz948R.GdGwsvR..."; done > pw999
>
> JtR loads the resulting file as having no different salts, whereas it
> should be 999 different because of the different iteration counts.
> (It might be possible to optimize for this special case, but I am
> talking about correctness only now.)
>
> Both sha512crypt and sha512crypt-opencl are affected.  However,
> sha512crypt-cuda correctly loads this as 999 different salts.
>
> Alexander

Is there a minimun number of rounds? I mean, is 999 the mininum rounds 
allowed by some spec?

Claudio

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ