Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 26 Mar 2012 13:42:21 +0530
From: Dhiru Kholia <>
Subject: Re: [JtR patch] Fast cracker for Mozilla Firefox,
 Thunderbird and SeaMonkey master passwords.

On Mon, Mar 26, 2012 at 11:39 AM, magnum <> wrote:
> On 03/25/2012 08:35 PM, Dhiru Kholia wrote:
>> I have just committed OMP support for mozilla format. It is roughly
>> 1.5x faster using 3 cores. So far, I can't identify where the
>> bottleneck is (help / profiling needed!). Also OMP support isn't
>> tested rigorously and it might have some bugs.
> How come cert8.db is needed for detecting "no password" while it's not
> needed for cracking? Could this be avoided? Not a big deal, just wondering.

mozilla2john uses NSS functions (which also require cert8.db files)
for detecting "no passwords". It can be changed to use the same code
as mozilla_fmt and then it won't require cert8.db files.

One more reason to enable OMP by default, bugs magically disappear ;)


Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.