Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20140129212927.GA10893@openwall.com>
Date: Thu, 30 Jan 2014 01:29:27 +0400
From: Solar Designer <solar@...nwall.com>
To: john-users@...ts.openwall.com
Subject: Re: Honey Encryption

On Wed, Jan 29, 2014 at 09:55:02PM +0100, magnum wrote:
> On 2014-01-29 20:47, Rich Rumble wrote:
> >I haven't checked a recent version of John out, does AES256 zip still FP?
> 
> Yes, and it's frequent enough the format is more or less unusable. It's 
> been moved to the broken/ subdirectory for now.

I think that even a format producing very frequent false positives is
somewhat usable - for finding very weak passwords and/or for
pre-filtering a wordlist for testing by another cracker (e.g., a shell
script invoking the target program).  I think moving such formats to
broken/ is wrong.  Instead, maybe JtR should print a warning when the
currently chosen format has FMT_NOT_EXACT set.

Alexander

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.