Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Beginners & Help
Re: Mt Gox just emailed me saying there are 8 claim requests on my account.
by
rob80
on 24/06/2011, 05:05:35 UTC
Quote from: kjj on June 24, 2011, 04:43:54 AM
Quote from: bananaphone on June 24, 2011, 04:11:04 AM
Quote from: kjj on June 24, 2011, 04:03:13 AM
By the way, did you check the file for your account info?  Did your password hash start with $1$?

$1$ doesn't help. FreeBSD MD5 doesn't protect weak passwords.
With a simple dictionary attack, I cracked more than 500 passwords in one blow.
Total amount of cracked passwords I got so far are now over 2000.

What is the longest so far?

When the csv was released I was interested in what kind of passwords people used for 'financial' institutions.  This is what I got:

$ for i in `cat .john/john.pot | cut -d : -f 2` ; do echo ${#i} ; done | sort | uniq -c
     98 10
     36 11
     46 12
      4 13
      4 14
      5 15
      1 4
    111 5
    864 6
    454 7
    640 8
    182 9


5 15 char passwords.