Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Sat, 19 Apr 2014 23:21:30 +0200
From: magnum <john.magnum@...hmail.com>
To: john-users@...ts.openwall.com
Subject: Re: BMC Patrol password representations

On 2014-04-18 15:50, Nicolas Collignon wrote:
>> You supplied pretty good data, there are several clues in it. I'll be back
>> within 24h. I hope someone beats me to it because I believe there are
>> several stages in solving this.
>>
> It smells like a hardcoded ECB key will be found in binary
> nco_patrol_encrypt :)

Yes apparently an administrator can view passwords, so they are not 
one-way hashed. I guess JtR is not the tool for this. Just find the key.

magnum

Powered by blists - more mailing lists

Your e-mail address:

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.