Products Openwall GNU/*/Linux   server OS John the Ripper   password cracker Free & Open Source for any platform Pro for Linux (RPM package) Pro for Mac OS X (dmg package) Wordlists   for password cracking passwdqc   policy enforcement phpass   password hashing in PHP crypt_blowfish   ditto in C/C++ tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login Services Publications Articles Presentations Community Mailing lists Community wiki Donations Resources Source code repository (CVSweb) File archive & mirrors How to verify digital signatures Password recovery resources Recommended books What's new

Date: Wed, 4 Jul 2012 15:10:53 -0400 (EDT)
From: "Brad Tilley" <brad@...ystems.com>
To: john-users@...ts.openwall.com
Subject: Re: Re: John the Ripper 1.7.9-jumbo-6

> ...some have
> unreasonable expectations on what's possible judging by speeds for other
> hash types achieved with other tools...

I've found this to be true for some users. They'll have a fast GPU card
and they'll see it do hundreds of millions of plain MD5 hashes a second
using some other password cracking software, then they'll get some OpenBSD
Blowfish hashes and run them through JtR and wonder why JtR is so slow in
comparison.

It's just a basic lack of understanding. Perhaps a wiki page would be
appropriate to help user expectations be inline with reality? If that's an
acceptable idea, I'd be glad to write a rough first draft provided one
does not already exist.

Brad

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux - Powered by OpenVZ