Ngesinye isikhathi ngo-2014, ezindaweni zokulahla izihlahla zomthombo we-BSD 3, ngathola ifayela
Kulawa ma-hashi, i-algorithm isetshenzisiwe
Sithatha i-bruter ejwayelekile
Ngokushesha, ngiqhekeze amaphasiwedi amaningi, amaningi awo abebuthakathaka kakhulu (ngokumangazayo, i-bwk isebenzise iphasiwedi /.,/.,,
- kulula ukuthayipha kukhibhodi ye-QWERTY).
Kodwa iphasiwedi kaKen yayingenakwephulwa. Ngisho nokusesha okuphelele kwazo zonke izinhlamvu ezincane nezinombolo (izinsuku ezimbalwa ngo-2014) akuzange kunikeze umphumela. Njengoba i-algorithm yasungulwa nguKen Thompson noRobert Morris, ngangizibuza ukuthi yayiyini indaba. Ngiphinde ngabona ukuthi, uma kuqhathaniswa namanye ama-password hashing schemes afana ne-NTLM, i-crypt(3) ayisheshi ukusebenzisa amandla anonya (mhlawumbe ukwenziwa ngcono kancane).
Ingabe wayesebenzisa osonhlamvukazi noma ngisho nezinhlamvu ezikhethekile? (I-7-bit full brute force izothatha iminyaka emibili ku-GPU yesimanje).
Ekuqaleni kuka-Okthoba, lesi sihloko
Ekugcineni, namuhla u-Nigel Williams uveze le mfihlo:
Kusuka ku: Nigel Williams[i-imeyili ivikelwe]>
Isihloko: Re: [TUHS] Ibuyisela /etc/passwd amafayelaUKen uselungile
ZghOT0eRm4U9s:p/q2-q4!
Kuthathe izinsuku ezingaphezu kwezine ku-AMD Radeon Vega64 ku-hashcat cishe ku-930MH/s (labo abazi ukuthi i-hashrate iyaguquguquka futhi yehle ngasekupheleni).
Lena i-pawn yokuqala ehambisa izikwele ezimbili phakathi
Ngijabula kakhulu ngokuthi imfihlakalo ixazululiwe, futhi umphumela muhle kakhulu.
Source: www.habr.com