Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 5 Apr 2006 23:35:05 +0400
From: Solar Designer <solar@...nwall.com>
To: john-users@...ts.openwall.com
Subject: Re: Challenge : some results

On Wed, Apr 05, 2006 at 09:27:07PM +0200, websiteaccess@...il.com wrote:
> Le Wed, 5 Apr 2006 22:32:20 +0400, Solar Designer a ?crit:
> > ... but you can further improve your results by simply picking the 255
> > cracked passwords and placing them into a 255-entry "wordlist". ;-)
> 
>  Well, If you don't have a supercomputer and not 15 years before you, 
> how crack maximum passwords ???
>  -> have a very good short wordlist and some highly optimized rules.
> 
>  As you can see, more 4 millions words are not more effective than only 
> 72 000 specialized words.
>  Less words = less time to crack , no ?

Indeed.  But you've missed my point.

I was saying that you didn't properly define your "challenge", yet you
started to show the "results".  Would a wordlist consisting only of the
255 cracked passwords be a proper winning submission to your challenge?

With this ridiculous example, I also wanted to show that optimizing a
wordlist for a particular password file does not necessarily result in a
wordlist which is best for other password files.

-- 
Alexander Peslyak <solar at openwall.com>
GPG key ID: B35D3598  fp: 6429 0D7E F130 C13E C929  6447 73C3 A290 B35D 3598
http://www.openwall.com - bringing security into open computing environments

Was I helpful?  Please give your feedback here: http://rate.affero.net/solar

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ