Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Fri, 8 Feb 2013 20:10:15 -0700
From: Stephen John Smoogen <smooge@...il.com>
To: john-users@...ts.openwall.com
Subject: Re: SSHA-512 supported?

On 8 February 2013 17:57, Solar Designer <solar@...nwall.com> wrote:

> Anyway, still no luck with rounds=64.

Here is another dead end in case anyone looks at this later. I went to
look at the source code of the various sha512crypt and they all
defaulted to a minimum of 1000 rounds even when told not to. [Solar's
perl may already patched around this to look for rounds less than 64.]
but if others do it they would end up with

perl -e 'print crypt("colorado", "\$6\$rounds=64\$otYx2eSXx.OkEY4F"), "\n";'
$6$rounds=1000$otYx2eSXx.OkEY4F$3YmC.YCbBzoVQGAbuW/PGAuqi4k3j4m.CcKtp5C99nYjX5m1pMnTeXs.rOvDlgeh5wS3d/AWDLpLcNrvv/Y4g0

I found that the python version had a built in version that could be
used in case the system didn't have sha512crypt built into systems
crypt.. so I went and patched that to remove the minimum of 1000 and
went from 2^0 -> 2^20 . No luck on matching either the colorado or
test string.

So like I said.. a dead end, but one that others don't have to follow:
$6$rounds=2$otYx2eSXx.OkEY4F$qK4nSEJSZxNB1u5Nj3ImjB7RzUzfmbdylgRKc49EhPZjeVHi7MiDLDgVYMtJd/ML1HFL9vZ50dsqd/Sd9MyNb0
$6$rounds=4$otYx2eSXx.OkEY4F$I6WtF/6yqrXzNQ/ZLiBAoznc3SoziqlO6dhF7PyaYGZgJ3ornJuATIn7VQrQxzF32XEZ2uI.86xLfyju67kzt0
$6$rounds=8$otYx2eSXx.OkEY4F$VHDjY1KNUkpCcUQtrnz8fIa3OAOkCdXIS1mYjuAiRuBVvPbcWzQnzGtJty5hAOrEUVCFY.f1JqBwvK2IBXVHl/
$6$rounds=16$otYx2eSXx.OkEY4F$xeAb/6jO.Op9C4qtc0LnfPphMQAXRRlU/Q0JpvXlYCFgLQMstfj3htIrE1RIgB.sf4dByzBVRW8VwpLWNi5ju/
$6$rounds=32$otYx2eSXx.OkEY4F$p3IB0JiIdyasAIzTrM3AlsGxUxHQ2SxirZwbkWkufAxeoQLh01cZKPWiHnXvOC56.r0lZLCkVDyZq0cBQwQDJ/
$6$rounds=64$otYx2eSXx.OkEY4F$AHEdP8oIaOlerrg39E0Zig58ASzHq3ICOBiXwahkpeDgGV4VDQWuxnmw1uwH10/72L0VOXqnNOhEBKmkCsZAq/
$6$rounds=128$otYx2eSXx.OkEY4F$bV1hTNOE6l7oFmXQABmcltxJk98JNgW9fXAAmLEhz6.rX3/247pS1LHFg1WMf304NXSB4otj/4RFX8lKnFdKW0
$6$rounds=256$otYx2eSXx.OkEY4F$GSAgINjcQo3a9H0FkObz7ME8wEIE6QPTwhISAD1o6fdengvBIZHNig5VvVRg8O6Tkjg4HpN2mE0NwVai2LmS6.
$6$rounds=512$otYx2eSXx.OkEY4F$BCEAtMtO/u/Y90O5Oi9oi6jizfdGond9GrSqh0KJmkMzVG/MqVEp8Jha/7SdnSW8JJSA46qtRbeVa0H0GfEZD.


> Alexander



-- 
Stephen J Smoogen.
"Don't derail a useful feature for the 99% because you're not in it."
Linus Torvalds
"Years ago my mother used to say to me,... Elwood, you must be oh
so smart or oh so pleasant. Well, for years I was smart. I
recommend pleasant. You may quote me."  —James Stewart as Elwood P. Dowd

Powered by blists - more mailing lists

Your e-mail address:

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.