[15969] in Kerberos_V5_Development

home help back first fref pref prev next nref lref last post

Re: Question about FAST

daemon@ATHENA.MIT.EDU (kristian)
Thu Jul 8 15:08:46 2010

Message-ID: <232579.48360.qm@web76013.mail.sg1.yahoo.com>
Date: Fri, 9 Jul 2010 03:08:40 +0800 (SGT)
From: kristian <x_astroboyz@yahoo.co.id>
To: "Henry B. Hotz" <hotz@jpl.nasa.gov>
In-Reply-To: <B962574F-3F24-408A-A3A1-3D7917D3DD56@jpl.nasa.gov>
MIME-Version: 1.0
Cc: krbdev@mit.edu
Content-Type: text/plain; charset="iso-8859-1"
Errors-To: krbdev-bounces@mit.edu
Content-Transfer-Encoding: 8bit


On 9/7/10, Henry B. Hotz <hotz@jpl.nasa.gov> wrote :

> John the Ripper supports single-des keys, and I think it requires an
AFS3 salt as well.  
> Neither of those are enabled by default in current
installations.

They claim that JTR can decrypt TGT of kerberos V5, but where can I get the AS_REP hex string to be decrypted? Instead the hex string of ticket in AS_REP always changes and the code entered in JTR must be static, I think.
So, any idea how to decrypt AS_REP to get the ticket by performing offline dictionary attack ?

_______________________________________________
krbdev mailing list             krbdev@mit.edu
https://mailman.mit.edu/mailman/listinfo/krbdev


home help back first fref pref prev next nref lref last post