Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-ID: <e333b727-1779-14e6-a98c-057826fd9d99@htt-consult.com>
Date: Sun, 11 Dec 2016 00:43:16 -0500
From: Robert Moskowitz <rgm@...-consult.com>
To: john-users@...ts.openwall.com
Subject: Need a little help cracking one password

I wish to crack a root password from one of my servers.  For practical 
reasons, I cannot reboot the system in single user mode and change the 
password.  I have done this times past for other servers.

It just so happens that I used the same password on another server, and 
created a passwd file with the one entry.  I am running the John that 
comes with Fedora 22, the docs cay it is 1.10 2013/05/29.

John has been crunching away for 20 days on a Lenovo x120e notebook 
without finding the password.  Well I know a few things about this 
password and I would like to instruct John o be selective on what it 
tries.  But I am a bit of a hack and need so hand-holding on how to 
alter /etc/john.conf (or make another) that will target the password.

I know the password is 10 characters long.

I know that the first position is either 'x' or 'X'.
The second is a digit, as is the third.
The forth is alpha, and I don't know the case.
The fifth is either 'q' or 'Q'
and soforth (either digit, some alpha, or a specific alpha of either case)

How do I set up what amounts to a mask on possible passwords to try?

thank you for your assistance.

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.