LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 03-06-2005, 05:34 AM   #1
gfrair
LQ Newbie
 
Registered: Jan 2005
Posts: 20

Rep: Reputation: 0
/etc/shadow crack


I have to find a way to crack a users "simple" password after I have gained access to the /etc/shadow file.

Now, i have tried using John the Ripper and it is taking years to figure the password out, maybe i am using it wrong but i copied the line in /etc/passwd to a file called passwd.txt and the hashed line in /etc/shadow to a file called shadow.txt.

I then run John the Ripper with: "unshadow passwd.txt shadow.txt", then i copy the output from that command to another file called temp.txt.

I then run John the Ripper again with the command: "john temp.txt"

It seems to be trying to crack it, but it is taking hours.

Does anyone know of a better hash cracker or what am doing wrong, I have to figure this out for a school project so any help would be greatly appreciated.

Thanks
 
Old 03-06-2005, 06:09 AM   #2
scuzzman
Senior Member
 
Registered: May 2004
Location: Hilliard, Ohio, USA
Distribution: Slackware, Kubuntu
Posts: 1,851

Rep: Reputation: 47
JTR is one of the best available. It is going to take awhile, as it does not actually "crack" a password, but insteads it encrypts various passwords using the same algorithm and compares that to the hash.
It basically startes at 0 and goes through all iterations to ZZZZZZZZZ including all upper- and lower-case letters and numbers.
"Decrypting" a UNIX password is impossible, thus this is the only approach.
 
Old 03-06-2005, 10:26 AM   #3
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 57
The size and complexity of the password also makes a really big difference. Once you start getting over 8 characters, you'll be meauring cracking times in days/weeks rather than hours.
 
1 members found this post helpful.
Old 03-06-2005, 08:01 PM   #4
gfrair
LQ Newbie
 
Registered: Jan 2005
Posts: 20

Original Poster
Rep: Reputation: 0
Thanks for the input.

Greatly appreciate it.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Shadow File Crack Elbryan Linux - Security 2 02-22-2005 05:00 PM
/etc/shadow- (notice the dash after the word shadow) shellcode Linux - Security 1 09-03-2004 04:54 AM
Crack the Mac Brother Michael Linux - General 5 01-29-2004 03:09 AM
Program: Crack matt3333 Slackware 11 01-26-2004 01:28 AM
Urpmi on crack bluefire Linux - Software 5 10-06-2003 10:39 PM


All times are GMT -5. The time now is 08:03 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration