Openwall Community Wiki

Sample password hash encoding strings - revised/completed the SHA-crypt entries

This wiki page is meant to be populated with sample password hash encoding strings and the corresponding plaintext passwords, as well as with info on the hash types. Relevant file formats (such as /etc/passwd, PWDUMP output, Cisco IOS config files, etc.) may also be mentioned.

John the Ripper user community resources - link to sample-hashes

This is the namespace for John the Ripper password cracker. It contains pages on and links to things such as * most useful and currently relevant excerpts from the john-users mailing list * step-by-step tutorials for end-users (both basic and advanced stuff)

How to retrieve and audit password hashes from remote Linux servers - wrote "Setting up proactive password strength checking"

Setup of the auditor's system Let's assume that you want to audit all of your Linux servers' passwords on a single “secure” Linux system - a workstation or server that is preferably not used for “risky” purposes (does not run services, is not reachable from the Internet, etc.)

Parallel and distributed processing with John the Ripper

One of the most common questions in the computing domain is “Can I use multiple processes or cores to increase speed?” In particular, problems that are time-sensitive or would take a relatively unreasonable amount of time to solve (wp>NP-complete) receive a lot of attention; password cracking is no different.

Contributed patches for John the Ripper

This is the page and DokuWiki namespace to upload unofficial JtR patches to (yes, the wiki supports file uploads). Please do. Links to external websites with JtR patches are also acceptable. Significant updates to this wiki page (such as newly added patches) are to be announced on the john-users mailing list (in addition to updating the wiki page, not instead of that).

John the Ripper step-by-step tutorials for end-users - link to the new tutorial "How to retrieve and audit password hashes from remote Linux servers"

Tutorials maintained on this wiki: * How to retrieve and audit password hashes from remote Linux servers (intermediate) External links (English): * There are many video tutorials/demos for specific uses of JtR on YouTube (mostly basic stuff) * A generic tutorial rehashing much of the official documentation (mostly basic). This one has numerous factual errors, yet it is representative of what many JtR tutorials look like, and all of them contain factual errors, unfortunately (please f…

MSCash Algorithm

MSCash Algorithm Description What happens when you are in front of a wp>Windows machine, which has a domain account and you can't access the domain (due to network outage or domain server shutdown)? wp>Microsoft solved this problem by saving the hash(es) of the last user(s) that logged into the local machine. These hashes are stored in the Windows registry, by default the last 10 hashes.

How to create a user-local build of recent gcc (GNU C compiler) - added notes on gcc 4.5's need for MPC, and on another approach to get the libraries built

The following applies to gcc versions 4.x (last tested with gcc 4.4.3 on Owl-current installed from the 2010/01/28 ISO snapshot, but should work on other Linux systems with essential “development” tools installed as well). gcc 4.5+ will additionally require the MPC library. These instructions show how to build the prerequisite libraries separately from gcc, although another valid approach would be to place their source code in properly-named subdirectories under the gcc build tree and let …

Welcome to the Openwall Community Wiki! - added "register" and "log in" links

The idea is to have a DokuWiki namespace for each of our major projects, maybe resembling the directory structure of the main Openwall website - e.g., we could have namespaces Openwall GNU/*/Linux user community resources and John the Ripper user community resources. Then users of our software and Openwall team members could populate those namespaces with relevant content.

passwdqc user community resources - further edits to the request for content

passwdqc is a password/passphrase strength checking and policy enforcement toolset, including an optional PAM module (pam_passwdqc), command-line programs (pwqcheck and pwqgen), and a library (libpasswdqc). Tutorials and OS-specific instructions * A book chapter on how to enable and configure passwdqc on FreeBSD 5+ * A forum posting that shows how to enable and configure passwdqc on FreeBSD 5+ (also talks about pam_cracklib on CentOS, but fails to mention its drawbacks) * How to enable a…

PlayGround - old revision restored

John the Ripper benchmarks - added a note on hyperthreading

Initially, this page will be the place to collect and share trivial john --test benchmarks on different systems. At a later time, it may make sense to turn it into a namespace with sub-pages for john --test benchmarks (only c/s rate matters) and actual cracking runs (lots of things matter). Also, the underlying data may be uploaded/collected (e.g., exact john --test outputs, /proc/cpuinfo off of Linux systems, john.log files).

How to reboot a Linux server stuck into the Big Kernel Lock - clarified that the "keyboard controller" being referred to is the one on the motherboard, not the one in the keyboard (so a keyboard is not required for this to work)

We encountered a situation where a remote server's Linux kernel Oops'ed with the Big Kernel Lock acquired , and we used the following program to reboot that server: #include int main(void) { iopl(3); outb(0xfe, 0x64); return 0; }