Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <b7b7c3a857901c24944ea02c66939c9c@smtp.hushmail.com>
Date: Sat, 19 Apr 2014 23:21:30 +0200
From: magnum <john.magnum@...hmail.com>
To: john-users@...ts.openwall.com
Subject: Re: BMC Patrol password representations

On 2014-04-18 15:50, Nicolas Collignon wrote:
>> You supplied pretty good data, there are several clues in it. I'll be back
>> within 24h. I hope someone beats me to it because I believe there are
>> several stages in solving this.
>>
> It smells like a hardcoded ECB key will be found in binary
> nco_patrol_encrypt :)

Yes apparently an administrator can view passwords, so they are not 
one-way hashed. I guess JtR is not the tool for this. Just find the key.

magnum

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.