Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 16 Sep 2008 07:17:01 +0400
From: Solar Designer <>
Subject: Re: Lotus Domino R5 and R6 patch

On Sat, Sep 13, 2008 at 03:18:51PM -0300, Nahuel Grisol?a wrote:
> Hey there, I was wondering if someone here has a patch for this great
> tool to crack Lotus Domino R5 and R6 password hashes, those we can
> retrieve by applying this Vulnerability:
> I've found a patch inside John's WebPage but it's using other kind of
> algorithm.

Can you please be more specific on this - what patch and how/why it does
not work for you?  Perhaps provide a sample password file (just a few
lines) that you try to feed to JtR.

My understanding is that the jumbo patch currently includes support for
Lotus Domino R5 hashes in lotus5_fmt.c and for some newer hashes (are
those R6?) in DOMINOSEC_fmt.c.  In fact, the sample password hash found
in the advisory on the web page above is also found as a test case in
lotus5_fmt.c - so clearly JtR with the jumbo patch would crack that one.


To unsubscribe, e-mail and reply
to the automated confirmation request that will be sent to you.

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.