| |||||||||||||
How fast is it?How fast is it?Posted Feb 18, 2006 22:13 UTC (Sat) by kevinbsmith (guest, #4778)Parent article: Cracking Passwords with John the Ripper
In a little review like this, I would have appreciated if it would have included some really (really) rough benchmarks. Something like seeding the database with a weak password ("heaven37"), a better password that is still memorable by mortals (twinkle%celebrate22) and something even stronger. And then let the machine run for a while. Would each of these get cracked in 30 seconds, 30 hours, 30 days, or ???
I know it's hardware dependent, but even a very small sample like this, on one specific machine, would be useful information. I didn't see any benchmarks on the JtR site either.
Does anyone want to post some urls or take the time to produce some really crappy but interesting stats like these?
(Log in to post comments)
How fast is it? Posted Mar 7, 2006 22:20 UTC (Tue) by barrygould (guest, #4774) [Link] Last time I ran John (in 2005 on a Pentium M 1.6GHz, IIRC), even after 2 days it was unable to crack a file with only a few passwords in the form of a 6-char dictionary word + 2 digits.
I don't know if things are different today.
Some people have been recommending using abreviations of phrases as passwords, e.g. arltr = "all roads lead to Rome", but if that becomes common, all it takes is a digital version of Bartlett's Familiar Quotations to break common phrases.
Barry
|
|||||||||||||