Linux Format forums Forum Index Linux Format forums
Help, discussion, magazine feedback and more
 
 FAQFAQ   SearchSearch   MemberlistMemberlist   UsergroupsUsergroups   RegisterRegister 
 ProfileProfile   Log in to check your private messagesLog in to check your private messages   Log inLog in 

SOLVED john the ripper

 
Post new topic   Reply to topic    Linux Format forums Forum Index -> Help!
View previous topic :: View next topic  
Author Message
purplepenguin
LXF regular


Joined: Wed Oct 05, 2011 3:19 pm
Posts: 121
Location: Blissfully at the Command Line

PostPosted: Mon Sep 24, 2012 9:25 pm    Post subject: SOLVED john the ripper Reply with quote

After reading the articles by James Litton "Passwords a better strategy" in issue 162 and Ben's "Hack a server" article in issue 163 I wanted to see how secure my passwords are on my home server.

I installed JTR on my main Mint PC and copied the shadow file from the server (which is running Ubuntu 12.04 server). to a file on in my home directory called pass.txt. I ran JTR overnight and it failed to crack any of the 3 user passwords yipee I thought my passwords must be fairly strong.

I was nosing about in /etc/john/john.conf and saw this section

Code:
Incremental modes
[Incremental:All]
File = $JOHN/all.chr
MinLen = 0
MaxLen = 8
CharCount = 95

[Incremental:Alpha]
File = $JOHN/alpha.chr
MinLen = 1
MaxLen = 8
CharCount = 26

[Incremental:Digits]
File = $JOHN/digits.chr
MinLen = 1
MaxLe]n = 8
CharCount = 10

[Incremental:Alnum]
File = $JOHN/alnum.chr
MinLen = 1
MaxLen = 8
CharCount = 36

[Incremental:LanMan]
File = $JOHN/lanman.chr
MinLen = 0
MaxLen = 7
CharCount = 69


Does the MaxLen=X part mean that JTR cannot crack passwords over this length? and can I just change this value to a larger one say 20?

The shortest password in use on my server is 12 characters long all lowercase and I was wondering if the reason JTR failed to crack any of them is due to this MaxLen parameter.

Thanks for any insight

Lee


Last edited by purplepenguin on Mon Sep 24, 2012 11:00 pm; edited 1 time in total
Back to top
View user's profile Send private message
purplepenguin
LXF regular


Joined: Wed Oct 05, 2011 3:19 pm
Posts: 121
Location: Blissfully at the Command Line

PostPosted: Mon Sep 24, 2012 10:59 pm    Post subject: Reply with quote

OK I seem to have answered my own question those parameters only affect the incremental mode not the wordlist attack. to make the MaxLen larger I would need to recompile John.
Back to top
View user's profile Send private message
View previous topic :: View next topic  
Display posts from previous:   
Post new topic   Reply to topic    Linux Format forums Forum Index -> Help! All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Linux Format forums topic RSS feed 


Powered by phpBB © 2001, 2005 phpBB Group


Copyright 2011 Future Publishing, all rights reserved.


Web hosting by UKFast