Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Message-ID: <CAN1C=SOPr_p=FUnKknxR436pLTuXx+eG04bkNzjmKu25GUFfpw@mail.gmail.com>
Date: Thu, 6 Jul 2017 22:15:18 +0800
From: noir maru <noirmaru@...il.com>
To: john-users@...ts.openwall.com
Subject: Re: gpg2john working for symmetric encryption?

I've been doing some further testing and specifying the cipher CAST5 with
gpg --cipher-algo CAST5 -c -o data2.tgz.gpg causes this problem, but the
default AES does not.

On Thu, Jul 6, 2017 at 9:48 PM, noir maru <noirmaru@...il.com> wrote:

> Hi,
>
> wc export.hash returns:       1       1   16809 export.hash
>
> the file only has one very long line, and it is going directly from the
> output of gpg2john... is there another way than gpg2john export.tgz.gpg >
> export.hash that I should be using to avoid corruption?
>
> when running gpg2john there are some other errors I didn't notice.
>
> Unknown string-to-key(s2k 166)
>
> unknown version (90).
>
> This file is encrypted with CAST5 according to gpg...
>
> --format=gpg didn't make any difference...
>
> I tested it on an AES gpg file and it works. It seems to be CAST5
> specifically...
>
> But I'm not expert in this.
>
> cheers
>
>
> On Thu, Jul 6, 2017 at 9:17 PM, Solar Designer <solar@...nwall.com> wrote:
>
>> On Thu, Jul 06, 2017 at 08:26:16PM +0800, noir maru wrote:
>> > i have a file i created with tar -cz export| gpg -c -o export.tgz.gpg
>> >
>> > i run gpg2john export.tgz.gpg > export.hash
>> >
>> > at this point gpg2john complains that MDC is missing. export.hash is
>> > created and that starts with $gpg$*0.......
>> >
>> > and then i run john with ./john --wordlist wordlist.lst export.hash
>>
>> What does this command say? -
>>
>> wc export.hash
>>
>> > there are some errors which i have included below and no password is
>> found,
>> > though the known password is in the wordlist.
>>
>> Of course, nothing would be found when the hashes are misdetected as
>> tripcode.  You may try "--format=gpg" as one of the warnings suggests.
>>
>> However, this doesn't explain why you have so many lines in that file.
>> Did you possibly copy-paste it from another machine and inadvertently
>> introduced many linefeeds?
>>
>> > is gpg2john not working with this kind of symmetric file encryption?
>>
>> I don't know.  Maybe someone else will address this question.
>>
>> But first you need to make sure you don't corrupt the file between the
>> gpg2john and the john invocations, as right now it looks like you did.
>>
>> Of course, I could be wrong in my guess.
>>
>> Alexander
>>
>
>

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.