Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-ID: <20120805192241.GA15232@debian>
Date: Sun, 5 Aug 2012 23:22:41 +0400
From: Aleksey Cherepanov <aleksey.4erepanov@...il.com>
To: john-dev@...ts.openwall.com
Subject: Aleksey's status report #14

I missed previous status report. Though there was the contest. I did
not get any progress with MJohn. Then I investigated some things about
contest and wrote writeup. I did not finish team writeup so it is on
todo list.

I and Frank switched back to Johnny because it is more important for
users now. We plan to get fully working basic functionality for core
john very soon.

I'll do day reports. I think I'll answer to weekly reports. Ok?

I started new branch in my repo - dev1.1 (because next release will be
1.1 as of there was already release numbered 1):
$ git clone http://github.com/AlekseyCherepanov/johnny.git -b dev1.1
or in existing repo:
$ git checkout dev1.1

Done

- progressbar fixed

Currently it works well. Though it shows overall progress on file, it
is a progress in cracks, i.e. 1 cracked, 9 left = 10%. Probably it would
be better for users to see percentage of their attack, i.e. 1 day
spent and 50% means that we should wait 1 day more. But it has its own
drawback and it seems to be harder to implement. Although we could
have 2 progressbar: for attack and for overall progress.

- settings work now, i.e. they are loaded on start-up

You could find settings in
~/.config/Openwall/Johnny, the GUI for John the Ripper.conf
So to remove them use
$ rm ~/.config/Openwall/Johnny,\ the\ GUI\ for\ John\ the\ Ripper.conf 

- john auto search

If user did not specify path to john then at start up johnny searches
for it in PATH then checks predefined places (currently only
/usr/sbin/john like on Debian). The same check is done when user asks
johnny for default settings. In PATH johnny searches for 'john' (i.e.
not for 'john-gpu' or whatever). Johnny splits PATH in platform
dependent way: by colon while on windows systems separator for PATH is
semicolon. Johnny checks possible place to be a readable and
executable file. First found one is our john. After that johnny shows
a message box with text about path to john.

- clean gui up

I disabled all buttons intended for jumbo.

- other small clean-ups and fixes

- improved speed for password pulling after `john -show`

Now hash table is used so it works seamlessly. No lags for 10k file
with 5k cracked passwords. There are some things to improve more here
but other problems are in the way.


Priorities

- finish team write-up

- sessions

- hardcode formats list for core john

I think I could postpone real way of doing things because it is harder
and it is not very important.

- add --users, --groups, --shells, --salts to options page

- add --save-memory ?

I doubt it is useful because johnny eats memory itself. Though I do
not know enough about this options to predict all uses.


Problems

Working with code I found some old problems and understood some more.
They are quite important.

- I could not connect cracked password with original hash

I call `john -show` and read user and password then put password to
all rows where user is the same. It is wrong and only works when we do
not have two rows with the same user name.

I could not look into .pot because hashes there could be in other
form. Though for core john they could be the same, aren't they?
(Mangling hash's form right in johnny does not seem good.)

I could craft new input file where hash is in gecos field also (not
name). Then `john --show` give me original hash. But it needs
crafting, i.e. temporary file for new .pot. It seems long way. (Though
I do not see shorter way now.) Should I do it as a basic
functionality?

- my brother pointed me out that john understands different file
format, i.e. not only user:hash:others is right. It affects my file
loading and it also affects parsing of `john --show` because it shows
info in the same format. I did not yet investigate this question. Is
it important problem now? Any hints?

Thanks!

-- 
Regards,
Aleksey Cherepanov

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.