Products Openwall GNU/*/Linux   server OS John the Ripper   password cracker Free & Open Source for any platform Pro for Linux (RPM package) Pro for Mac OS X (dmg package) Wordlists   for password cracking passwdqc   policy enforcement phpass   password hashing in PHP crypt_blowfish   ditto in C/C++ tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login Services Publications Articles Presentations Community Mailing lists Community wiki Donations Resources Source code repository (CVSweb) File archive & mirrors How to verify digital signatures Password recovery resources Recommended books What's new

Date: Mon, 29 Sep 2008 05:50:52 +0200
From: Simon Marechal <simon@...quise.net>
To: john-users@...ts.openwall.com
Subject: Re: quite fast MD5 hashing implementation

Bucsay Balázs a écrit :
> Hello!
> 
> I dont see the solution here, maybe because i'm "blind" :)
> a63 -= F(b64,c64,d64) + x + ac;
> You can tell here the a63, if you know the "x", but the x is the part of
> the right password, so if you know x, you will know something about the
> password. Am i right? I hope im not and i can learn a new trick :)

Oh I see your problem. Actually you pretend that you do know the 
password, except for the first four bytes. Then you somehow "know" x, 
until you have to reverse K[0], which is at the start of the last round. 
That way you save 25% while the last part of the passwords you are 
testing stays the same.

-- 
To unsubscribe, e-mail john-users-unsubscribe@...ts.openwall.com and reply
to the automated confirmation request that will be sent to you.

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux - Powered by OpenVZ