Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 11 Sep 2013 08:04:14 +0530
From: Sayantan Datta <std2048@...il.com>
To: john-dev@...ts.openwall.com
Subject: Re: mask mode bug

On Wed, Sep 11, 2013 at 1:18 AM, magnum <john.magnum@...hmail.com> wrote:

> After more testing, here's some other issues:
>
> The following makes little sense because it's no mask, just a static word.
> Yet it should work and not segfault:
> $ GWS=$((0x10000)) ../run/john test.hash -form:raw-md5-opencl
> -ses:masktest -prog=10 -mask=password
>
> Here's some max length tests (will probably wrap horribly in mail):
> $ echo -n aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa | md5 >
> maxlen.hash
> $ rm -f test.pot && GWS=$((0x10000)) ../run/john -pot:test.pot maxlen.hash
> -form:raw-md5-opencl -ses:masktest -prog=10
> -mask=?a?a?aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
> Device 1: GeForce GT 650M
> Local worksize (LWS) 64, global worksize (GWS) 65536
> Loaded 1 password hash (Raw-MD5-opencl [MD5 OpenCL (inefficient,
> development use only)])
> Using kernel md5_ccc...
> Press 'q' or Ctrl-C to abort, almost any other key for status
> aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa (?)
> 1g 0:00:00:00 1.470g/s 139.7p/s 1260Kc/s 1260KC/s
>
> That works fine. Now a mask at first position and another in middle:
> $ rm -f test.pot && GWS=$((0x10000)) ../run/john -pot:test.pot maxlen.hash
> -form:raw-md5-opencl -ses:masktest -prog=10
> -mask=?aaa?aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
> Device 1: GeForce GT 650M
> Local worksize (LWS) 64, global worksize (GWS) 65536
> Loaded 1 password hash (Raw-MD5-opencl [MD5 OpenCL (inefficient,
> development use only)])
> Using kernel md5_ccc...
> Press 'q' or Ctrl-C to abort, almost any other key for status
> aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa (?)
> 1g 0:00:00:00 1.587g/s 150.7p/s 14325c/s 14325C/s
> aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa..
> aa~aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
> Use the "--show" option to display all of the cracked passwords reliably
> Session completed
>
> That worked fine too. Now mask in end of static stuff:
> $ rm -f test.pot && GWS=$((0x10000)) ../run/john -pot:test.pot maxlen.hash
> -form:raw-md5-opencl -ses:masktest -prog=10
> -mask=aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa?a?a?a
>
> The above hangs until watchdog reboots my laptop.
>
> Mask somewhere in the middle:
> $ rm -f test.pot && GWS=$((0x10000)) ../run/john -pot:test.pot maxlen.hash
> -form:raw-md5-opencl -ses:masktest -prog=10
> -mask=a?a?aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
> Device 1: GeForce GT 650M
> Local worksize (LWS) 64, global worksize (GWS) 65536
> Loaded 1 password hash (Raw-MD5-opencl [MD5 OpenCL (inefficient,
> development use only)])
> Using kernel md5_ccc...
> Press 'q' or Ctrl-C to abort, almost any other key for status
> 0g 0:00:00:00 0g/s 130.1p/s 12363c/s 12363C/s a
>  aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa..a
>  aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
> Session completed
>
> The above fails to find the password.
>

There is some problem with mask.c ,I'm working on it. For now I won't
recommend using mask more than 16 placeholders, otherwise it might cause
asic hangs. BTW for above situations you could also use mask + wordlist.
Mask is appended to the wordlist.

Regards,
Sayantan

[ CONTENT OF TYPE text/html SKIPPED ]

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ