Re: Cracking SSL passwords for fun and profit

From: Tzafrir Cohen <tzafrir@xxxxxxxxxxxxx>
Date: Thu, 27 Nov 2008 18:22:05 +0000

On Thu, Nov 27, 2008 at 08:58:02AM +0100, Richard Hartmann wrote:

On Thu, Nov 27, 2008 at 01:27, Douglas A. Tutty <dtutty@xxxxxxxxx> wrote:

Do you know what keyspace you used for your password? i.e. how many
(roughly) characters, were they letters, numbers, punctuation, etc?

I do remember I chose a lowsec one. I.e. it should be [a-zA-Z0-9]{6-8}

Use your scripting language of choice (e.g. python), create a nested
loop that generates, in a logical manner, the set of passwords in which
the correct password will be found. Have this script able to save to a
file the current loop variables, and load them on startup if given the
file name as a parameter.

Afaik, there is no easy way to feed a password into SSH. Same as
OpenSSL, it was designed _not_ to accept passwords from the
command line. For example, both will clear STDIN before prompting
for a password.
That being said, it should be doable with expect.

openssh is not the only ssh client in Debian. We also have putty,
lsh-client and dropbear.

--
Tzafrir Cohen | tzafrir@xxxxxxxxxx | VIM is
http://tzafrir.org.il | | a Mutt's
tzafrir@xxxxxxxxxxxxx | | best
ICQ# 16849754 | | friend

--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx

Follow-Ups:
- Re: Cracking SSL passwords for fun and profit
  - From: Richard Hartmann

References:
- Cracking SSL passwords for fun and profit
  - From: Richard Hartmann
- Re: Cracking SSL passwords for fun and profit
  - From: Douglas A. Tutty
- Re: Cracking SSL passwords for fun and profit
  - From: Richard Hartmann

Prev by Date: Re: ALSA sound recording frustration
Next by Date: Re: Erase cache, clean registry in Linux
Previous by thread: Re: Cracking SSL passwords for fun and profit
Next by thread: Re: Cracking SSL passwords for fun and profit
Index(es):
- Date
- Thread

Relevant Pages

Re: Slow bash script
... getting only about one iteration per second in the while loop. ... It extracts md5sums from a 180k Packages file and makes an indices file. ... though I'm no script master, ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx with a subject of "unsubscribe". ...
(Debian-User)
Re: loading huge number of rules in iptables (blocklist)
... Hash: SHA1 ... So the above function's loop goes over these many times ... inserting the rules for each range. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ...
(Debian-User)
Re: [Maxima] Bug in for, Maxima, Debian ?
... ans = ... I got empty matrix it is correct. ... This loop shouldn't execute, but this loop go forever writing: ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ...
(Debian-User)
Re: iceape puzzle
... There's another process doing things with dpkg at the time this loop happens. ... To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx ... Trouble? ...
(Debian-User)