Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Thu, 20 Dec 2012 10:24:22 -0500
From: Matt Weir <>
Subject: Re: Creating Graphs from john.log

Thanks Magnum!
     I have to admit I didn't know about StatusShowCandidates. How is
that impacted as passwords are cracked. Let's say you are cracking 10
passwords and you crack five of them really early. Do you still take
the total number of guesses and divide it by 10? Or do you have to
calculate the number of passwords cracked per step. Aka start out
dividing by 10 until the first one is cracked, then divide any *new*
guesses by 9, and so on.

I actually like having the config options in the john.conf file, but
that's simply because it's easier for me to have a john_research.conf
where I have everything set up and then use the -config= option on the
command line. What might be nice though is to have one config option
that would override all the various other settings and set up a
standard "testing" run. That's very low priority though. What I
probably need to do is create a first draft of a "research readme"
about the various settings in John that might be interesting for
someone doing password cracking research. I'll obviously make a lot of
mistakes/omissions but then people can correct me and we can document
ways to run tests using John. Also, I feel there's a lot of good
functionality in John that most people simply don't know about. For
example, figuring out how to use the "dummy" format required a bit of
Google searching on my part, and as I said, I had no clue about the


Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.