Very Computer

by **Chris Dabrows** » Tue, 21 May 1996 04:00:00

Is there any way of using Crack with the international version of FreeBSD?
When I try running it I get the following errors:

From "out.pid":
join: Rejected /etc/master.passwd:paul:****PASSWORD REMOVED****:1006:1000::0:0:Paul Civati,Surrey,Private,:/home/paul:/usr/local/bin/tcsh: does not have 8 fields

From "out.hostname.pid":
pwc: May 19 18:53:00 Crack v4.1f: The Password Cracker, (c) Alec D.E. Muffett, 1992
pwc: May 19 18:53:00 Version of crypt() being used internally is not compatible with standard.
pwc: May 19 18:53:00 This could be due to byte ordering problems - see the comments in Sources/conf.h
pwc: May 19 18:53:00 If there is another reason for this, edit the source to remove this assertion.
pwc: May 19 18:53:00 Terminating...

Is the problem due to the international version using MD5 encryption whilst
the US one uses DES? If so are there any other programs that achieve the
same results?

Many thanks,

Chris
--
Chris Dabrowski

by **Ollivier Robe** » Wed, 22 May 1996 04:00:00

[courtesy cc of this posting sent to cited author via email]

> Is there any way of using Crack with the international version of FreeBSD?

I'm afraid not. I'm not aware of any patches for Crack to run under MD5
crypt.

Quote:> Is the problem due to the international version using MD5 encryption whilst

There are several problems here:

1. the international crypt use MD5 and outputs up to 36 bytes where the DES
outputs only a fixed amount of 13 bytes per password,

The format is the following:

- 3 bytes for the signature $1$
- up to 8 bytes for the salt
- $
- the MD5 hash (128 bits or 16 bytes) encoded in base64 = 24 bytes

Look into /usr/src/lib/libcrypt/crypt.c for details.

2. the /etc/master.password file has three additional fields that Crack
doesn't know about. It is easy to generate a "password"-like file from
master.password though.

--

-=-=-=-=-=- Support The Free UNIX Systems ! FreeBSD Linux NetBSD -=-=-=-=-=-

by **J Wuns** » Wed, 22 May 1996 04:00:00

> Crack v4.1f: The Password Cracker, (c) Alec D.E. Muffett, 1992
> Version of crypt() being used internally is not compatible with
> standard. This could be due to byte ordering problems - see the
> comments in Sources/conf.h If there is another reason for this,
> edit the source to remove this assertion. Terminating...
> Is the problem due to the international version using MD5 encryption whilst
> the US one uses DES?

The default encryption of FreeBSD is MD5-based (and thus believed to
be even stronger than DES). Of course, that's not compatible with the
rest of the world, but this doesn't hurt as long as you're not going
to share encrypted passwords e.g. via NIS.

DES versions are available to the world, and inside US, from different
locations.

If your crack is only intended for the local system (where you're
using MD5 passwords), it should be run with the MD5 algorithm, of
course. Maybe you need to remove the above check, since crack is
apparently confused then.

--
cheers, J"org

Never trust an operating system you don't have sources for. ;-)

Very Computer

Crack problem with MD5 passwd file?

Crack problem with MD5 passwd file?

Crack problem with MD5 passwd file?

Crack problem with MD5 passwd file?