Your browser does not seem to support CSS. If images appear below, please disregard them.
toggle
May
S M T W T F S
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31
Sponsored Links
Latest Postings
Topic Options
Rate This Topic
#10636 - 08/07/03 09:56 PM Newbs question on password files
Joined: Aug 2003
Posts: 8
Chasm Offline
Junior Member
Chasm Offline
Junior Member

Joined: Aug 2003
Posts: 8
A little help here would be much appreciated. I was wondering about password files. I know quite a bit about how to crack them, and why the passwords cant be reversed. So I was wondering, why dont you just modify the password file, so that the encypted part is the same as an encrypted password you know. I hope someone understands me!!! Ill try and explain what I mean, if people dont understand me

Top
Sponsored Links
#10637 - 08/07/03 10:24 PM Re: Newbs question on password files
Joined: Mar 2002
Posts: 1,273
SilentRage Offline
DollarDNS Owner
SilentRage Offline
DollarDNS Owner

Joined: Mar 2002
Posts: 1,273
OH, USA
usually you can do that very thing. I've remarked before how sending encrypted passwords on a network isn't very secure. Just because you can't figure out the original password, doesn't mean you can't login with the encrypted form. Unfortunately you'd have to be pretty experienced in protocols and programming to make use of that. You'd have to be able to sniff networks and code yourself some programs to take advantage.

There's a program called ERD Commander which overwrites NT/2K/XP passwords from dos. It doesn't take but a second to do it.


Domain Registration, Hosting, Management
http://www.dollardns.net
Top
#10638 - 08/08/03 12:29 AM Re: Newbs question on password files
Joined: Aug 2003
Posts: 8
Chasm Offline
Junior Member
Chasm Offline
Junior Member

Joined: Aug 2003
Posts: 8
Thanks for that, i mean with regards to linux, as opposed to Windows though. I hope you understand what I mean. Lets suppose your linux password is "password", so you look in your pwd file, copy the encrypted version of "password". Then theoretically all you should need to do, is replace any password in a different password file to what you just copied, you should be able to log in as that user using your password. Is that what you thought I meant.

I totally agree with you on plaintext passwords, I understand the principals ( but dont have much experience), and think that anyone with an ounce of common sense would realise what a danger it can be. Specially when anyone can get there hands on a packet sniffer, and "easily" read them.

Top
#10639 - 08/08/03 08:09 PM Re: Newbs question on password files
Joined: Mar 2002
Posts: 1,273
SilentRage Offline
DollarDNS Owner
SilentRage Offline
DollarDNS Owner

Joined: Mar 2002
Posts: 1,273
OH, USA
I wasn't talking about plaintext passwords. I was talking about encrypted passwords being no better than plaintext. That you don't need to see the plaintext. Just use the encrypted password.

And what you said is very imaginative. I heartily support a test to see if it actually works. There's a chance that it won't though - like if they use the username as a key to decrypt the password. Who knows. Just try it and report back to us on the results.


Domain Registration, Hosting, Management
http://www.dollardns.net
Top
#10640 - 08/08/03 09:17 PM Re: Newbs question on password files
Joined: Oct 2002
Posts: 955
jonconley Offline
UGN Super Poster
jonconley Offline
UGN Super Poster

Joined: Oct 2002
Posts: 955
Merrill, IA, USA
Yes. In some situations it can work. As can removing the password field altogether.

Now if you are talking about linux specifically, a big problem may be that there are alot of ways to get ahold of the file, but attempting to write to the file and writing to it (to use the hash you know) is opening a whole new can of worms.

Top
#10641 - 08/08/03 10:20 PM Re: Newbs question on password files
Joined: Aug 2003
Posts: 8
Chasm Offline
Junior Member
Chasm Offline
Junior Member

Joined: Aug 2003
Posts: 8
I'm currently experimenting with it, I've written a small program in C++ that sort of does it, but am having no joy in getting access. I have a few more ideas, will post source soon, if it works

A friend recommended using a buffer overflow to write to the password file, so far I've had not much luck with that.

Thanks for the advice

Top
#10642 - 08/08/03 10:52 PM Re: Newbs question on password files
Joined: Jul 2003
Posts: 14
superpozition Offline
Junior Member
superpozition Offline
Junior Member

Joined: Jul 2003
Posts: 14
Canada
Chasm

here is what i do. Say you get someones password file and you want to decrypt some of those passwords, you obviously can't write a program to decrypt them but what you can do is this:

1) Get a huge list of words (possible a dictionary list)
2) In linux they have a standard algorithm they use for encrypting those plaintext passwords into encrypted text. Search for it and use the code in your program to encrypt all the words in your dictionary file.
3) now all you have to do is write a little program which will loop through and try and match your encryted dictionary file with your password file.

Simple stuff isn't it?


Keep It Real!
Top

Member Spotlight
Gremelin

Gremelin
Portland, OR; USA
Posts: 7,194
Joined: February 2002
Show All Member Profiles 
Forum Statistics
Forums46
Topics45,557
Posts80,725
Members2,157
Most Online1,567
Apr 25th, 2010
Top Posters(All Time)
UGN Security 38,721
Gremelin 7,194
§intå× 3,255
SilentRage 1,273
Ice 1,146
pergesu 1,136
Infinite 1,041
jonconley 955
Girlie 908
unreal 860
Newest Members
Herbert_Sherbert, codemauve, Lillysdragon1984, Brewwit, boa
2157 Registered Users
Who's Online Now
0 registered members (), 2 guests and 3 spiders.
Latest News