Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 30 May 2006 20:42:06 +0400
From: Solar Designer <>
Subject: Re: Lotus R6 Password Hash format

On Tue, May 30, 2006 at 06:37:26PM +0200, Guillaume Arcas wrote:
> Selon Solar Designer <>:
> > So just download and apply the jumbo patch ...

> I already did it and applied this patch against JtR :
> --format=NAME              force ciphertext format NAME:\
> DES/BSDI/MD5/BF/AFS/LM/NT/PO/raw-MD5/IPB2/raw-sha1/md5a/KRB5/bfegg/nsldap/MYSQL/mscash/lotus5/DOMINOSEC
> with no success (and no, it surely & unfortunately doesn't mean that tested
> passwords are strong).

"No success" is not informative enough for me. ;-)  Did John load those
hashes at all?  Did you specify a particular "format" or was it
auto-detected - and what was it?  Can you show us what your hashes look
like - perhaps post an example for a password that you will change?  If
you post the corresponding plaintext password as well, that would be
even better.


Alexander Peslyak <solar at>
GPG key ID: B35D3598  fp: 6429 0D7E F130 C13E C929  6447 73C3 A290 B35D 3598 - bringing security into open computing environments

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ