Products Openwall GNU/*/Linux   server OS John the Ripper   password cracker Free & Open Source for any platform Pro for Linux (RPM package) Pro for Mac OS X (dmg package) Wordlists   for password cracking passwdqc   policy enforcement phpass   password hashing in PHP crypt_blowfish   ditto in C/C++ tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login Services Publications Articles Presentations Community Mailing lists Community wiki Donations Resources Source code repository (CVSweb) File archive & mirrors How to verify digital signatures Password recovery resources Recommended books What's new

Date: Sun, 19 Mar 2006 22:07:12 +0300
From: Solar Designer <solar@...nwall.com>
To: john-users@...ts.openwall.com
Subject: Re: rules help

On Sun, Mar 19, 2006 at 08:46:24PM +0200, O??uz Yar??mtepe wrote:
> Hi. I didnt undestand the rules exactly. 
> In signle mode lets say i want to check 123456
> 
> How can i write it as a rule?

You don't.  This example has nothing to do with rules, and it has
nothing to do with "single crack" mode.

If you want "123456" tried as a candidate password, you simply make sure
that it is present in your wordlist - and you run the wordlist mode (or
batch mode).

> What does <- means?

I'm not sure I understand what you're referring to here.  If you're
asking what the two characters "<-" mean in a rule, then the meaning is
to reject "words" being processed if they're shorter than the maximum
supported password length for the current hash type by more than 2
characters.  The "<" command is defined as follows (quoting doc/RULES):

<N	reject the word unless it is less than N characters long

Character position and length codes (such as N in the above command) are
specified as:

0...9	for 0...9
A...Z	for 10...35
*	for max_length
-	for (max_length - 1)
+	for (max_length + 1)

Here max_length is the maximum plaintext length supported for the
current hash type.

So if you're running John against traditional DES-based hashes, which
are limited to 8-character long passwords, then "<-" will be rejecting
anything shorter than 7.

The uses for this functionality are subtle.  I don't think you seriously
wanted to ask about it if you're just learning what rules are for.

-- 
Alexander Peslyak <solar at openwall.com>
GPG key ID: B35D3598  fp: 6429 0D7E F130 C13E C929  6447 73C3 A290 B35D 3598
http://www.openwall.com - bringing security into open computing environments

Was I helpful?  Please give your feedback here: http://rate.affero.net/solar

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux - Powered by OpenVZ