Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Fri, 08 Feb 2013 22:50:17 -0200
From: Claudio André <>
Subject: Re: sha512crypt formats matching salt detection bug

Em 08-02-2013 22:45, Solar Designer escreveu:
> magnum, all -
> for n in {1..999}; do echo "\$6\$rounds=$n\$aXayEJGxA02Bl4d2\$TWfWx34oD.UjrS/Qtco6Ij2XPY1CPYJfdk3CcxEjnMZvQw2p5obHYH7SI2wxcJgaS9.S9Hz948R.GdGwsvR..."; done > pw999
> JtR loads the resulting file as having no different salts, whereas it
> should be 999 different because of the different iteration counts.
> (It might be possible to optimize for this special case, but I am
> talking about correctness only now.)
> Both sha512crypt and sha512crypt-opencl are affected.  However,
> sha512crypt-cuda correctly loads this as 999 different salts.
> Alexander

Is there a minimun number of rounds? I mean, is 999 the mininum rounds 
allowed by some spec?


Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.