Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Wed, 8 Jun 2011 07:57:16 +0400
From: Solar Designer <>
Subject: Re: 1.7.7-jumbo-6

Dhiru -

On Tue, Jun 07, 2011 at 08:01:06PM -0700, Dhiru Kholia wrote:
> rardump

This one refers to p0.rar, which is not there.  So perhaps it's of no
use in the jumbo tree.  Should I remove it?

Anyway, it let me detect a problem:

$ ./john ../src/unused/rardump 
Loaded 1 password hash (rar [32/64])
! p0.rar : No such file or directory
Segmentation fault

So I introduced "error();" (which terminates the program) right after
the fprintf().  Sounds OK?

And here's a trickier problem:

$ ./john ../src/unused/sshdump 
Loaded 2 password hashes with 2 different salts (ssh [32/64])
*** glibc detected *** double free or corruption (!prev): 0x000000001f5e0410 ***

I don't yet know if it's a bug I introduced or if it was in your patch.
Does -RC3 work on sshdump for you?

pdfdump gets cracked just fine, though:

$ ./john ../src/unused/pdfdump 
Loaded 4 password hashes with 4 different salts (pdf [32/64])
testpassword     (test-5-RC4-128-open-testpassword.pdf)
test             (test-3-RC4-40-open-test.pdf)
testpassword     (test-3-RC4-40-open-testpassword.pdf)
test             (PDF-Example-Password.pdf)
guesses: 4  time: 0:00:00:00 DONE (Wed Jun  8 07:54:17 2011)  c/s: 97.43 trying: test
Use the "--show" option to display all of the cracked passwords reliably


Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.