Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 16 May 2023 23:46:40 +0200
From: Solar Designer <>
Subject: Re: rule for password with control characters

On Tue, May 16, 2023 at 07:08:56AM -0700, jeff wrote:
> On 5/16/2023 04:50, Solar Designer wrote:
> >or better yet, optimized versions that produce fewer duplicates (skip
> >trying to insert or overstrike way beyond input word length):
> >
> >[List.Rules:ins_control_1]
> >>\r[00-6] '7 i\p[0-7][\x7f\x01-\x1f]
> >[List.Rules:rep_control_1]
> >>[0-7] '8 o\0[\x7f\x01-\x1f]
> >Since you're cracking descrypt hashes, you may also want to include
> >\x80, which gets processed by descrypt as NUL:
> >
> >[List.Rules:ins_control_1]
> >>\r[00-6] '7 i\p[0-7][\x7f\x80\x01-\x1f]
> >[List.Rules:rep_control_1]
> >>[0-7] '8 o\0[\x7f\x80\x01-\x1f]

> I tried using your better rules.
> [List.Rules:ins_control_1]
> \r[00-6] '7 i\p[0-7][\x7f\x80\x01-\x1f]
> [List.Rules:rep_control_1]
> [0-7] '8 o\0[\x7f\x80\x01-\x1f]

You lost the ">" characters at the start of the lines.  They were _not_
e-mail quoting, but were part of the rules.  Maybe whatever you use to
read e-mail hid them from your view.  So, in plain English, you need to
add ">" right before the "\r", and add ">" right before the "[0-7]".
The ">" is a rule command that asks to reject the input word if it is
shorter than the length given next (which in this case varies between
the many rules generated by preprocessor expansion).

You can also see and copy-paste the rules in the archived message here:

> When I tried ins_control_1
> I got the error:
> Invalid rule in (null) at line 4028: Unknown command 0 '7 i0???
> When I tried rep_control_1
> I got the error:
> No "rep_control_1" mode rules found in john.conf



Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.