Date: Tue, 30 Oct 2012 21:55:46 -0400 From: Rich Rumble <richrumble@...il.com> To: john-dev@...ts.openwall.com Subject: Re: Re: Office <=2003 format On Tue, Oct 30, 2012 at 8:02 PM, magnum <john.magnum@...hmail.com> wrote: > I am considering implementing oldoffice in OpenCL. This will be easy enough > but I would prefer splitting it into two different formats - one for MD5 and > another for SHA1. But what would I call them? When did they switch to SHA1? > It seems all Office 2003 test files are using SHA1. That's right, it changed in (office)2003 to a more secure default. The rounds changed between 2007 and 2010 I believe (from 1k to 50k). http://blogs.msdn.com/b/david_leblanc/archive/2008/07/03/office-crypto-follies.aspx I'd call the old "weak" encryption MS_OFFICE_RC4, I think the md5 is the last part of the encryption and the RC4 the "main part" no? It's typically referred to as RC4 http://blogs.msdn.com//b/david_leblanc/archive/2010/04/16/don-t-use-office-rc4-encryption-really-just-don-t-do-it.aspx It appears they change the crypto with SP's http://blogs.msdn.com//b/david_leblanc/archive/2009/05/20/office-2007-sp2-encryption-settings.aspx (I've not changed the defaults in those example files, I may add some :) http://blogs.msdn.com//b/david_leblanc/archive/2008/12/04/new-improved-office-crypto.aspx -rich
Powered by blists - more mailing lists
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.