[680] in bugtraq
Re: Attack on DES paper and CRACK
daemon@ATHENA.MIT.EDU ("Ivan V. Krsul Andrade")
Thu Jan 19 19:09:58 1995
To: rgm3@is.chrysler.com (Robert Moskowitz)
Cc: bugtraq@fc.net
In-Reply-To: Your message of "Thu, 19 Jan 1995 13:00:56 CST."
<9501191814.AA03362@clncrdv1.is.chrysler.com>
Date: Thu, 19 Jan 1995 17:19:11 -0500
From: krsul@cs.purdue.edu ("Ivan V. Krsul Andrade")
In a message on Thu, 19 Jan 1995 13:00:56 -0600, Robert Moskowitz writes:
=>>I suspect that you don't really need CRACK for this but instead could
=>>simply use a script that checks the selected password's quality before
=>>it is encrypted, assuming that I read the application right. A perl
=>>script to do this is an extended example in the Perl book by Larry
=>>Wall. You can find the code for all the examples in the book on
=>>ftp.uu.net, and I believe there is a Perl available for PCs, so that
=>>would more or less handle the problem for you guys.
=>
=>But the response on ftp.uu.net is terrible. I have not found these. Can
=>anyone point me to another source of these?
=>
=>Robert Moskowitz
=>Chrysler Corporation
=>(810) 758-8212
I apologize for the previous posting (I never got to finish it before
it got sent by my mailer).
You can find such programs in the COAST security archive. Retrieve the
file ftp://coast.cs.purdue.edu/pub/aux/tools.abstract and search for the
word "password" to get a list of all the tools we have that deal with
passwords.
I hope you find this information useful.
Ivan.
----
Ivan V. Krsul Andrade Computer Science Department
krsul@cs.purdue.edu 1398 Computer Science Building
Phone: (317) 494-9313 Fax: (317) 494-0739 West Lafayette, IN 47907-1398
PGP signature available WWW: http://www.cs.purdue.edu/people/krsul
