If you think multithreading in the application is the only way to take advantage of multiple processors, maybe you shouldn't be posting on /prog/.
Name:
Anonymous2008-02-16 9:25
>>41
I'm too lazy to start multiple processes or write a script. I would, but not for something I'll only play with for 5 minutes.
Name:
Anonymous2008-02-16 9:32
>>42
If you think you can generate usable rainbow tables in 5 minutes, maybe you should send me your computer.
Name:
Anonymous2008-02-16 10:23
what range of characters is valid in tripcode input?
Really, [\001-\377]. DES is only 7-bit, but remember there are side effects of using high-bit characters in the second and third positions because they potentially affect the salt used.
what range have you actually used in your rainbow table, and how much space does it take?
I'm using about 400 GB for tables. This includes all 0-4 character tripcodes, all 5-character [A-Za-z0-9./], and an assortment of a bunch of other tables that don't really go together. e.g. I started doing all 5 and 6 characters, but calculated how much it would take for all of them and realized I don't have the disk space (or enough CPUs to do it in an even remotely decent length of time) so I just made some of the tables for 6-8 characters. So really, I could do a lot better but it'd take much greater resources.
>>45
I think he means DES works on the lower range of bytes [00,7F]
Name:
Anonymous2008-02-16 23:27
>>46
Hence the ``wat''. That doesn't make any sense and isn't true.
Name:
Anonymous2008-02-17 0:25
>>47
DES uses a 56-bit key. crypt() takes the key from the lower 7 bits of each of 8 characters.
Tripcodes, on the other hand, have 58 meaningful bits - the 56 used for the key, and the full bytes in the second and third positions which make up the ``salt'', minus 14 bits of overlap.
Name:
Anonymous2008-02-17 0:28
Who still uses DES? Just calculate the SHA-1 sum of the concatenation of the "password" and some random, secret block of bytes on the server.
Every image/textboard on the internet, because it's the standard.
Name:
Anonymous2008-02-17 6:52
>>48
That makes more sense. It's a quirk specific to crypt, not DES.
>>49
SHA-1 is less secure than DES. DES is considered insecure because its keyspace is small enough to bruteforce in reasonable time, but SHA-1 has feasibly exploitable cryptographic vulnerabilities.
Having said that, using a block cipher as a hashing function is always a bad idea, but unfortunately, it has become the standard.
I'll settle this finger/thumb thing. Historically, the word "finger" has referred to any of the digits on on a hand, OR any of the digits on a hand except the thumb. So a thumb can be a finger or not depending on what you want to say. The definition that includes the thumb is the older, so I, personally, would consider it to be the "more correct" one.
>>62 >>63
"...the ancient Indo-European word for five was 'penkwe,' which became 'pente' in Greek, 'quinque' in Latin and 'panca' in Sanskrit. One can immediately see surface similarities between 'penkwe' and the Indo-European roots for fist, 'pnkwstis' and finger 'penkweros.'"