Penetration Testing mailing list archives

Re: Netscape Ldap ldif file SHA password cracking

From: Anders Thulin <Anders.Thulin () tietoenator com>
Date: Wed, 01 Dec 2004 07:56:02 +0100

m a wrote:

I tried John the Ripper (http://www.openwall.com//john/) patching with the Netscape

>diff files and recompiling. I basically put a SHA hash like the above in a txt file
and fed into john


     john -format:SHA hash.txt


  It's difficult to say, without seeing the file.  You have to follow the
format of a typical Unix password file, or john will ignore the lines:

  :{SHA}hEqt9R50vHZ+EheHW+JOJKvNWpw=:::::::
  :{SHA}+A0MoQHpZ7ULcw3fjorKDehejfY=:::::::

  You don't have to tell JtR the format: as there is only
one type of password in the file, that's what it will crack.

  You say john ignored your file ... that suggests it was
badly formed. If you got some explicit message, it would help
knowing what it said.

--
Anders Thulin   anders.thulin () tietoenator com   040-661 50 63        
TietoEnator Telecom & Media AB, Box 85, SE-201 20 Malmö

Current thread:

Re: Netscape Ldap ldif file SHA password cracking Anders Thulin (Dec 01)
- <Possible follow-ups>
- Re: Netscape Ldap ldif file SHA password cracking miguel . dilaj (Dec 01)
  - Re: Netscape Ldap ldif file SHA password cracking Rafał Kupka (Dec 01)
- Re: Netscape Ldap ldif file SHA password cracking m a (Dec 06)
  - RE: Netscape Ldap ldif file SHA password cracking David Cross (Dec 09)
- Re: Netscape Ldap ldif file SHA password cracking noconflic (Dec 09)
- RE: Netscape Ldap ldif file SHA password cracking Bénoni MARTIN (Dec 09)