Network Security: Detailed info on [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes.

Subject:	[Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?
Date:	Mon, 30 Jul 2007 00:09:18 -0700

Subject:

[Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?

Date:

Mon, 30 Jul 2007 00:09:18 -0700

Let's imagine there is someone out there able to crack any hash of the
entire set of DES-based crypt(3) hashes in a reasonable amount of time,
say 5-10 days.

Let's imagine that no matter how many hashes are submitted to the system,
1 or 1000, all of them are guaranteed to be cracked in this constant
amount of time.

Let's also imagine this service becomes commercially available.

Even though DES-based crypt(3) is outdated and obsolete, its use is still
widespread in typical large heterogeneous IT environments. So I guess this
service would interest lots of legitimate clients such as pentesters,
government agencies, IT departments in large companies or universities,
and the likes.

How much would you value this service ? Would you pay $100, $10, $1 per
hash to crack ? Would you require anonymity to use the service ?

-XRR

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, n/a n/a <= Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, Frank Denis Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, Tremaine Lea Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, 3APA3A Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, XRR . Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, coderman Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, coderman Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, 3APA3A Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, Valdis . Kletnieks Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, Michael Holstein Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, XRR .

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	[Full-disclosure] ASA-2007-018: Resource exhaustion vulnerability in IAX2 channel driver, Security Response Team
Next by Date:	Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, Frank Denis
Previous by Thread:	[Full-disclosure] ASA-2007-018: Resource exhaustion vulnerability in IAX2 channel driver, Security Response Team
Next by Thread:	Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, Frank Denis
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

[Full-disclosure] ASA-2007-018: Resource exhaustion vulnerability in IAX2 channel driver, Security Response Team

Next by Date:

Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, Frank Denis

Previous by Thread:

[Full-disclosure] ASA-2007-018: Resource exhaustion vulnerability in IAX2 channel driver, Security Response Team

Next by Thread:

Re: [Full-disclosure] Cracking the entire set of DES-based crypt(3) hashes. Interested ?, Frank Denis

Indexes:

[Date] [Thread] [Top] [All Lists]