What kinda encryption at passwords?

tr33forrest · May 28, 2006

First of all,
I am totally newbie to all of this, so, please, forgive me and please help me to educate myself a bit.

If the passwords are located in file passwd.db and looking something like:

ckiwior:zq0BwlzpS26vM
cgriswol:imA3lx8cG2eWw
kgibson:mw.DYvAXoapd2

etc..

so, into what passwords have veen encrypted?
I've tried Cain & Abel with no luck.

But, i might be wrong, i am just newbie with 0 knowledge.

I would appreciate everyone who's helping me to say which kinda encryption or with what they can be "decrypted"?

Best of all,
33

LowWaterMark · May 28, 2006

Read this and it'll explain that you really can't decrypt the passwords and why. Also, which encryption is most likely to have been used:

http://www.experts-exchange.com/Security/Q_21796443.html

Inspector Clouseau · May 28, 2006

According to this reply the "One more thing: you can get the SAME hash value for two DIFFERENT passwords, because of the way the one-way-hash
method works. But, to be honest, the probability for encountering
such case is rather too low."

Is completely wrong. You can easily reproduce a 8 Byte Hashcode just by mathematics. I encountered this by myself several times in our scan engine with string hashing (which is equal to password hashes). So basically it depends on which basis this hashcode was build. A lot of systems still using 8 byte hashcode which is NOT SECURE.

LowWaterMark · May 28, 2006

I would hope that people who are trying to secure important data are using the better hashes available today. Even the standard htpasswd password generator allows for MD5 and SHA encryptions.

Inspector Clouseau · May 28, 2006

I'm not exactly sure what are you going to do with the decrypted passwords, so i just give a small help: There's basically only one way: You have to guess passwords and to encrypt them and then compare them with the existing ones. It doesn't work in the other way as most of the brute forcers are working... But this was now the last help i gave since nobody knows if you are the right owner of those password file.

tr33forrest · May 29, 2006

thank you all for your answers!
also, the "words" before colon are usernames, right?

ps. experts-exchange needs an payment registration.

edit: also, as i can understand, these passwords can be "decrypted" via brute-force? I've heard a lot about 'John The Ripper'; can it handle it?
oh, forgot to ask one thing more: if you use Cain & Abel's Hash Calculator to calculate MD5 etc. hashes with these encrypted passwords, will it lead me somewhere closer?

LowWaterMark · May 29, 2006

tr33forrest said:

ps. experts-exchange needs an payment registration.
Click to expand...

No, it doesn't. Don't press the "View Solution" button... just scroll down on the page I linked, going down below the Ads. The replies are all visible and you need to read that as a starting place to understanding these types of passwords.

iceni60 · May 30, 2006

so what algorithm is it where did you get these hashes?

Log in or Sign up

What kinda encryption at passwords?

tr33forrest Registered Member

LowWaterMark Administrator

Inspector Clouseau AV Expert

LowWaterMark Administrator

Inspector Clouseau AV Expert

tr33forrest Registered Member

LowWaterMark Administrator

iceni60 ( ^o^)

Log in or Sign up

What kinda encryption at passwords?

tr33forrest Registered Member

LowWaterMark Administrator

Inspector Clouseau AV Expert

LowWaterMark Administrator

Inspector Clouseau AV Expert

tr33forrest Registered Member

LowWaterMark Administrator

iceni60 ( ^o^)

Useful Searches