Your browser does not seem to support CSS. If images appear below, please disregard them.
It appears that you're running an Ad-Blocker. This site is monetized by Advertising and by User Donations; we ask that if you find this site helpful that you whitelist us in your Ad-Blocker, or make a Donation to help aid in operating costs.
Previous Thread
Next Thread
Print Thread
Rate This Thread
#10636 - 08/07/03 09:56 PM Newbs question on password files  
Joined: Aug 2003
Posts: 8
Chasm Offline
Junior Member
Chasm  Offline
Junior Member

Joined: Aug 2003
Posts: 8
A little help here would be much appreciated. I was wondering about password files. I know quite a bit about how to crack them, and why the passwords cant be reversed. So I was wondering, why dont you just modify the password file, so that the encypted part is the same as an encrypted password you know. I hope someone understands me!!! Ill try and explain what I mean, if people dont understand me

Sponsored Links
#10637 - 08/07/03 10:24 PM Re: Newbs question on password files  
Joined: Mar 2002
Posts: 1,273
SilentRage Offline
DollarDNS Owner
SilentRage  Offline
DollarDNS Owner

Joined: Mar 2002
Posts: 1,273
OH, USA
usually you can do that very thing. I've remarked before how sending encrypted passwords on a network isn't very secure. Just because you can't figure out the original password, doesn't mean you can't login with the encrypted form. Unfortunately you'd have to be pretty experienced in protocols and programming to make use of that. You'd have to be able to sniff networks and code yourself some programs to take advantage.

There's a program called ERD Commander which overwrites NT/2K/XP passwords from dos. It doesn't take but a second to do it.


Domain Registration, Hosting, Management
http://www.dollardns.net
#10638 - 08/08/03 12:29 AM Re: Newbs question on password files  
Joined: Aug 2003
Posts: 8
Chasm Offline
Junior Member
Chasm  Offline
Junior Member

Joined: Aug 2003
Posts: 8
Thanks for that, i mean with regards to linux, as opposed to Windows though. I hope you understand what I mean. Lets suppose your linux password is "password", so you look in your pwd file, copy the encrypted version of "password". Then theoretically all you should need to do, is replace any password in a different password file to what you just copied, you should be able to log in as that user using your password. Is that what you thought I meant.

I totally agree with you on plaintext passwords, I understand the principals ( but dont have much experience), and think that anyone with an ounce of common sense would realise what a danger it can be. Specially when anyone can get there hands on a packet sniffer, and "easily" read them.

#10639 - 08/08/03 08:09 PM Re: Newbs question on password files  
Joined: Mar 2002
Posts: 1,273
SilentRage Offline
DollarDNS Owner
SilentRage  Offline
DollarDNS Owner

Joined: Mar 2002
Posts: 1,273
OH, USA
I wasn't talking about plaintext passwords. I was talking about encrypted passwords being no better than plaintext. That you don't need to see the plaintext. Just use the encrypted password.

And what you said is very imaginative. I heartily support a test to see if it actually works. There's a chance that it won't though - like if they use the username as a key to decrypt the password. Who knows. Just try it and report back to us on the results.


Domain Registration, Hosting, Management
http://www.dollardns.net
#10640 - 08/08/03 09:17 PM Re: Newbs question on password files  
Joined: Oct 2002
Posts: 955
jonconley Offline
UGN Super Poster
jonconley  Offline
UGN Super Poster

Joined: Oct 2002
Posts: 955
Merrill, IA, USA
Yes. In some situations it can work. As can removing the password field altogether.

Now if you are talking about linux specifically, a big problem may be that there are alot of ways to get ahold of the file, but attempting to write to the file and writing to it (to use the hash you know) is opening a whole new can of worms.

Sponsored Links
#10641 - 08/08/03 10:20 PM Re: Newbs question on password files  
Joined: Aug 2003
Posts: 8
Chasm Offline
Junior Member
Chasm  Offline
Junior Member

Joined: Aug 2003
Posts: 8
I'm currently experimenting with it, I've written a small program in C++ that sort of does it, but am having no joy in getting access. I have a few more ideas, will post source soon, if it works

A friend recommended using a buffer overflow to write to the password file, so far I've had not much luck with that.

Thanks for the advice

#10642 - 08/08/03 10:52 PM Re: Newbs question on password files  
Joined: Jul 2003
Posts: 14
superpozition Offline
Junior Member
superpozition  Offline
Junior Member

Joined: Jul 2003
Posts: 14
Canada
Chasm

here is what i do. Say you get someones password file and you want to decrypt some of those passwords, you obviously can't write a program to decrypt them but what you can do is this:

1) Get a huge list of words (possible a dictionary list)
2) In linux they have a standard algorithm they use for encrypting those plaintext passwords into encrypted text. Search for it and use the code in your program to encrypt all the words in your dictionary file.
3) now all you have to do is write a little program which will loop through and try and match your encryted dictionary file with your password file.

Simple stuff isn't it?


Keep It Real!

Member Spotlight
Gremelin
Gremelin
Portland, OR; USA
Posts: 7,195
Joined: February 2002
Show All Member Profiles 
Forum Statistics
Forums45
Topics46,816
Posts81,986
Average Daily Posts11
Members2,159
Most Online1,567
Apr 25th, 2010
Latest Postings
Top Posters(All Time)
UGN Security 39,980
Gremelin 7,195
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Top Liked Users (All Time)
§intå× Likes: 1
Cold Sunn Likes: 1
Crime Likes: 1
Cyrez Likes: 1
Ghost Likes: 1
Gremelin Likes: 4
Ice Likes: 1
unreal Likes: 1
Top Liked Users (30 Days)
Powered by UBB.threads™ PHP Forum Software 7.6.0
(Snapshot build 20160902)