Penetration Testing mailing list archives
Re: Etc/shadow file and john
From: Sherwyn Williams <sherwill22 () tmail com>
Date: Thu, 28 Jul 2005 06:47:39 -0400
I am not certain, however way is the default forEncrypting shadow passwords in unix and linux. System type is slackware.
On Wed, 27 Jul 2005 22:45, Leandro Reox wrote:
An effective method to get passwords is to pass them trough specific generated rainbow tables with a tool like CAIN. Is this hash encrypted with md5 or another known hashing algorithm ? Cheers -- Leandro Reox http://www.securearg.net/ Secure from the source -----Original Message----- From: Sherwyn Williams [mailto:sherwill22 () tmail com] Sent: Wednesday, July 27, 2005 1:57 PM To: pen-test () securityfocus com Subject: Etc/shadow file and john I am doing an assesment for passwords on a network, after getting the password file I piped the output to a text file, tried to run that against John and can't get any luck with the program. Do anyone here uses any other password programs, and is there a better format than a text file to store the out of the etc/shadow when trying to get the passes. Sherwyn Williams Technical Consultant Sherwill22 () tmail com
Sherwyn Williams Technical Consultant Sherwill22 () tmail com
Current thread:
- Etc/shadow file and john Sherwyn Williams (Jul 27)
- RE: Etc/shadow file and john Leandro Reox (Jul 28)
- Re: Etc/shadow file and john Sherwyn Williams (Jul 28)
- RE: Etc/shadow file and john Clement Dupuis (Jul 28)
- Re: Etc/shadow file and john Dave Spencer (Jul 28)
- Re: Etc/shadow file and john Terry Vernon (Jul 28)
- Re: Etc/shadow file and john frank boldewin (Jul 28)
- Re: Etc/shadow file and john Sherwyn Williams (Jul 28)
- Re: Etc/shadow file and john Wayne G (Jul 28)
- RE: Etc/shadow file and john Leandro Reox (Jul 28)