&nbsp>&nbsp
&nbsp>&nbsp
&nbsp>&nbsp
如何搭建密码破解服务器
摘要：(6:15:30)分类:linux我们经常为客户做大量的密码破解工作。有时候是由于我们破解了一个系统,寻找有无密码重复使用的情况;有时候是由于我们在获取密码复杂性方面的统计数字,以证明某个观点;有时候我们只是试图破解WPA-PSK。不过,你有一套很安全的系统很要紧。我们最近改建了自己的一台密码破解服务器,下面介绍了关于其规格和配置的一些信息。硬件规格主板:EVGAZ68FTW160-SB-E689-KRExtendedATX英特尔主板处理器:英特尔酷睿i
( 16:15:30)分类:linux
我们经常为客户做大量的密码破解工作。有时候是由于我们破解了一个系统,寻找有无密码重复使用的情况;有时候是由于我们在获取密码复杂性方面的统计数字,以证明某个观点;有时候我们只是试图破解WPA-PSK。不过,你有一套很安全的系统很要紧。我们最近改建了自己的一台密码破解服务器,下面介绍了关于其规格和配置的一些信息。
主板:EVGA Z68 FTW 160-SB-E689-KR Extended ATX英特尔主板 处理器:英特尔酷睿i7-GHz LGA 1155 95W四核台式机处理器
海盗船(CORSAIR)CAFA50 120mm CPU散热器
电源:海盗船专业系列Gold AX1200(CMPSU-1200AX)1200W ATX12V v2.31 / EPS12V v2.92 SLI Certified 80 PLUS GOLD认证模块化主动功率因数校正(PFC)电源
机箱:酷冷至尊HAF 932 Advanced RC-932-KKN5-GP黑钢ATX全塔式伟讯机箱,带USB 3.0
存储设备:2只日立Deskstar 3TB 3.5英寸SATA 6.0Gb/s内置硬盘——裸盘
内存:海盗船XMS3 16GB(4 x 4GB)240针DDR3 SDRAM DDR3 1333台式机处理器
GPU:4块蓝宝Radeon HD 6950 Dirt3 Edition SR 视频卡,带Eyefinity技术
共计:2629.78美元安装
虽然主板上有一个插槽可以使用,但是第四块视频卡其实与其他的视频卡合不来(视频卡相互排挤),于是我们决定采用一种“独特”的方式来安装它。我确信气流/散热方面的专家对这个决定不高兴,但这又是唯一的办法。使用灵活的PCIe扩展槽,我们总算装上了该视频卡。
灵活的PCI Express扩展槽
如右图所示,我们在机箱背面上钻了几个空眼,为视频卡上的连接器留出地方,并提供一定的稳定性。
硬盘/RAID配置
3TB硬盘要求我们利用Grub2和GPT。尽可能妥善地备份这个系统也很重要,以防出现硬件故障,所以我们想要使用RAID 1来确保简单。
通过BIOS的英特尔FakeRAID——失败
最初我们想通过主板内置的英特尔RAID功能来使用RAID 1,但是它似乎无法完全得到dmraid或Ubuntu Server 10.04.3的支持。不知什么原因,它在parted中出现的只是801GB硬盘;安装不允许在该801GB中创建任何分区。于是我们放弃了它。
想了解更多信息,请访问:http://ubuntuforums.org/showthread.php?p=
整个磁盘的软件RAID(mdraid/mdadm)——失败
我们希望硬盘完全冗余,于是试图创建一个很大的根分区和一个交换分区,分区设置为linux_raid类型。若使用这个方法,Ubuntu安装很正常,但是grub安装失败。折腾了一番后,我们还是无法成功地将grub安装上去。于是,我们采用了一种比较传统的分区方法。
想了解更多信息,请访问:http://ubuntuforums.org/showthread.php?p=
根分区的软件RAID(mdraid/mdadm)——成功了!
下面介绍了我们最后如何对这两个(/dev/sda, /dev/sdb)硬驱进行分区。我们是在安装之前,通过启动到自生系统(LiveCD)完成这一步的。
:~# parted /dev/sda mklabel gpt
:~# parted -a cyl /dev/sda unit s mkpart grub 34 4130
:~# parted -a cyl /dev/sdb set 1 bios_grub on
:~# parted -a cyl /dev/sda unit s mkpart boot
:~# parted -a cyl /dev/sda unit s mkpart primary 2144526
:~# parted -a cyl /dev/sdb set 3 raid on
:~# parted -a cyl /dev/sda unit s mkpart swap s s
:~# parted /dev/sda unit compact print free
Model: ATA Hitachi HDS72303 (scsi)
Disk /dev/sda: 3001GB
Sector size (logical/physical): 512B/512B
Partition Table: gpt
Number StartEndSizeFile systemNameFlags
117.4kB 2115kB 2098kBgrubbios_grub
22115kB 539MB537MBext2boot
GB 2996GB xfsprimary raid
42996GB 3001GB 4295MB linux-swap(v1) swap 然后在安装过程中,我们通过mdraid为第三个分区配置了RAID1。下面是安装完成后mdadm.conf看起来的样子。
:~# cat /etc/mdadm/mdadm.conf | grep ARRAY
ARRAY /dev/md0 level=raid1 metadata=1.0 num-devices=2 UUID=43dd56be:498abe6a:4421ece1:0659a71e name=0
我们在安装过程中为GDM选择了“Ubuntu Desktop”程序包。这点很重要,因为之后在GPU上,要是没有X.org服务器在运行,就无法进行破解。我们起初有一个启动脚本,就为了在后台执行xinit命令,但这使得可以实际访问系统的任何人都能访问根外壳。这是个坏主意。
一旦安装完成,grub2还是没有立即启动,于是我们再次从自生系统(LiveCD)启动,用手动方式来安装:
:~# mount -t xfs /dev/sda3 /mnt
:~# cp /mnt/etc/mdadm/mdadm.conf /etc/mdadm/mdadm.conf
:~# mdadm --assemble /dev/md0
mdadm: /dev/md0 has been started with 1 drive (out of 2).
:~# umount /mnt
:~# mount /dev/md0 /mnt
:~# mount /dev/sda2 /mnt/boot
:~# for i in /dev /dev/pts /proc / do sudo mount -B $i /mnt$i; done
:~# chroot /mnt
:/# grub-mkdevicemap
:/# grub-mkconfig -o /boot/grub/grub.cfg
Generating grub.cfg ...
Found linux image: /boot/vmlinuz-2.6.32-35-generic
Found initrd image: /boot/initrd.img-2.6.32-35-generic
Found memtest86+ image: /boot/memtest86+.bin
:/# grub-install --no-floppy --recheck --modules='biosdisk ext2' /dev/sda
Installation finished. No error reported.
:/# grub-install --no-floppy --recheck --modules='biosdisk ext2' /dev/sdb
Installation finished. No error reported.
然后重启动,现在我们看到了Ubuntu Gnome登录提示符!
安装OpenCL和AMD驱动程序
接下来我们需要安装所有那些图形卡。由于这些是AMD卡,我们将安装AMD OpenCL软件开发工具包(SDK)和AMD驱动程序。
:~$mkdir AMD-APP-SDK-v2.5-lnx64
:~$cd AMD-APP-SDK-v2.5-lnx64/
:~$wgethttp://developer.amd.com/Downloads/AMD-APP-SDK-v2.5-lnx64.tgz
:~$tar -zxvf AMD-APP-SDK-v2.5-lnx64.tgz
:~$sudo ./Install-AMD-APP.sh
作为一种检查机制,我们可以使用HelloCL测试来确保一切工作正常:
:~$cd /opt/AMDAPP/samples/opencl/bin/x86_64
:/opt/AMDAPP/samples/opencl/bin/x86_64$./HelloCL
Getting Platform Information
No protocol specified
Creating a context AMD platform
Getting device info
Loading and compiling CL source
Running CL program
看起来很好,现在不妨安装驱动程序:
:/opt/AMDAPP/samples/opencl/bin/x86_64$cd ~/
:~$sudo apt-get install libssl-dev build-essential python-dev libpcap-dev
:~$export AMDAPPSDKROOT=&/opt/AMDAPP&
:~$exportLD_LIBRARY_PATH=$LD_LIBRARY_PATH:&/opt/AMDAPP/lib/x86_64&:&/opt/AMDAPP/lib/x86&
:~$export ATISTREAMSDKROOT=$AMDAPPSDKROOT
:~$chmod +x ati-driver-installer-11-11-x86.x86_64.run
:~$sudo ./ati-driver-installer-11-11-x86.x86_64.run
安装支持OpenCL的Pyrit
Pyrit很出色,但是它并没有考虑到最新的AMD SDK。如果你到目前为止一直按要求来安装,应该没问题。不过,你会发现我们不得不作几处更改,以便让一切运行起来正常。
:~$wgethttp://pyrit.googlecode.com/files/cpyrit-opencl-0.4.0.tar.gz
:~$tar -zxvf cpyrit-opencl-0.4.0.tar.gz
:~$cd cpyrit-opencl-0.4.0/
:~/cpyrit-opencl-0.4.0$vi setup.py
编辑setup.py,在第55行后面新建一行,添加:
'/opt/AMDAPP/include', /
一旦pyrit有了所有正确的include指令,就可以开始编译/安装了。
:~/cpyrit-opencl-0.4.0$python setup.py build
:~/cpyrit-opencl-0.4.0$sudo python setup.py install
:~/cpyrit-opencl-0.4.0$cd ..
:~$wgethttp://pyrit.googlecode.com/files/pyrit-0.4.0.tar.gz
:~$tar -zxvf pyrit-0.4.0.tar.gz
:~$cd pyrit-0.4.0
:~/pyrit-0.4.0$python setup.py build
:~/pyrit-0.4.0$sudo python setup.py install
:~/pyrit-0.4.0$sudo pyrit list_cores
如果你使用一块视频卡,应该没问题;不过由于我们有四块,只好使用aticonfig实用工具来全部启用它们:
:~$sudo service gdm stop
:~$sudo aticonfig --adapter=all --initial
:~$sudo service gdm start
我们运行了一些快速的pyrit基准测试,情况看起来很好:
:~$sudo pyrit benchmark
Pyrit 0.4.0 (C)
Lukas Lueghttp://pyrit.googlecode.com
This code is distributed under the GNU General Public License v3+
Running benchmark ( PMKs/s)... /
PMKs/s total.
#1: 'OpenCL-Device 'Cayman'': 41098.6 PMKs/s (RTT 2.7)
#2: 'OpenCL-Device 'Cayman'': 38496.3 PMKs/s (RTT 2.6)
#3: 'OpenCL-Device 'Cayman'': 42851.1 PMKs/s (RTT 2.6)
#4: 'OpenCL-Device 'Cayman'': 43023.6 PMKs/s (RTT 2.7)
#5: 'CPU-Core (SSE2)': 635.3 PMKs/s (RTT 3.5)
#6: 'CPU-Core (SSE2)': 588.7 PMKs/s (RTT 3.3)
#7: 'CPU-Core (SSE2)': 879.4 PMKs/s (RTT 2.8)
#8: 'CPU-Core (SSE2)': 961.1 PMKs/s (RTT 2.8)安装带CAL++支持的pyrit
虽然 PMKs/s很好,但是我们知道这不是其应有的速度。所以我们决定采用使用CAL++的SVN版pyrit(0.4.1-dev),而不是使用带OpenCL的稳定版pyrit(0.4.0)。
我们要做的第一件事就是卸载pyrit(请相信我,这么做是值得的):
:~$cd pyrit-0.4.0/
:~/pyrit-0.4.0$sudo python setup.py install --record files. sudo rm $(cat files.txt)
:~pyrit-0.4.0$cd ../cpyrit-opencl-0.4.0/
:~/cpyrit-opencl-0.4.0$sudo python setup.py install --record files. sudo rm $(cat files.txt)
现在下载CAL++(http://sourceforge.net/projects/calpp/),并安装它:
:~$sudo apt-get install libboost-all-dev cmake
:~$tar -zxvf calpp-0.90.tar.gz
:~$cd calpp-0.90
CAL++需要作几个变更,以便顺利找到AMD SDK库,所以编辑CMakeLists.txt,注释掉这些行(即在每行开头添加“#”):
FIND_LIBRARY( LIB_ATICALCL aticalcl PATHS &$ENV{ATISTREAMSDKROOT}/lib& )
FIND_LIBRARY( LIB_ATICALRT aticalrt PATHS &$ENV{ATISTREAMSDKROOT}/lib& )
FIND_PATH( LIB_ATICAL_INCLUDE NAMES cal.h calcl.h PATHS &$ENV{ATISTREAMSDKROOT}/include& )
FIND_LIBRARY( LIB_ATICALCL aticalcl PATHS &/opt/AMDAPP/lib& )
FIND_LIBRARY( LIB_ATICALRT aticalrt PATHS &/opt/AMDAPP/lib& )
FIND_PATH( LIB_ATICAL_INCLUDE NAMES cal.h calcl.h PATHS &/opt/AMDAPP/include/CAL& )
现在我们编译,然后安装:
:~/calpp-0.90$sudo make install
由于CAL++已安装,你可以下载pyrit的开发分支,完成安装的其余步骤。
:~$sudo apt-get install subversion
:~$svn checkouthttp://pyrit.googlecode.com/svn/trunk/pyrit_svn
:~$cd pyrit_svn/cpyrit_calpp/
我有没有提到这是开发版本?这意味着你得作几个变更:
编辑setup.py第28行,应该是:
VERSION = '0.4.1-dev'
编辑setup.py第35行,应该是:
CALPP_INC_DIR = '/opt/AMDAPP'
编辑setup.py第41行,应该是:
CALPP_INC_DIRS.append(os.path.join(CALPP_INC_DIR, 'include/CAL'))
好了,我们已准备好了编译和安装:
:~/pyrit_svn/cpyrit_calpp$python setup.py build
:~/pyrit_svn/cpyrit_calpp$sudo python setup.py install
:~/pyrit_svn/cpyrit_calpp$cd ../pyrit/
:~/pyrit_svn/pyrit$python setup.py build
:~/pyrit_svn/pyritsudopython setup.py install向下滚动,即可看到基准测试部分下面的结果。我们得到了额外的20,000 PMK/s!
oclHashcat
oclHashcat的安装极其容易。只要解压缩即可。
:~$sudo apt-get install p7zip
:~$p7zip -d oclHashcat-0.26.7z
:~$wgethttp://www.openwall.com/john/g/john-1.7.8-jumbo-8.tar.bz2
:~$tar -jxvf john-1.7.8-jumbo-8.tar.bz2
:~$cd john-1.7.8-jumbo-8/src/
:~/john-1.7.8-jumbo-8/src$make linux-x86-64
接下来,我们下载了KoreLogic的Defcon 10规则集,并将它们添加到我们的john.conf
:~/john-1.7.8-jumbo-8/src$cd ../run
:~/john-1.7.8-jumbo-8/run$wgethttp://contest-2010.korelogic.com/rules.txt
:~/john-1.7.8-jumbo-8/run$cat rules.txt && john.conf
较新的彩虹表(Rainbow Table)是.RTI文件,这意味着它们是索引彩虹表,运行速度应该比普通彩虹表要快。由于我们有几个这样的彩虹表,所以需要安装rcracki。
:~$wgethttp://www.freerainbowtables.com/download/rcracki_mt_0.6.6_src.7z
:~$p7zip -d rcracki_mt_0.6.6_src.7z
:~$cd rcracki_mt_0.6.6_src/
编辑Makefile,更改OPTIMIZATION变量,应该是:
OPTIMIZATION = -O3 -mtune=native
现在我们可以编译了。
:~/rcracki_mt_0.6.6_src$make
:~/rcracki_mt_0.6.6_src$sudo make install
:~/rcracki_mt_0.6.6_src$cd ..
:~$sudo mv rcracki_mt_0.6.6_src /cracking/bin/
:~$cd /cracking/bin/rcracki_mt_0.6.6_src
:~/rcracki_mt_0.6.6_src$sudo mkdir src
:~/rcracki_mt_0.6.6_src$sudo mv BaseRTReader.* Cha* COPYING CrackEngine.* fast_md* global.h Hash* INSTALLING.txt lm2ntlm.* Makefile MemoryPool.* Public.* RainbowCrack.* rcrackiThread.* README.txt RT* sha1.* TODO src/
:~/rcracki_mt_0.6.6_src$sudo chmod o+w rcracki.*
为了支持比较旧的.RT彩虹表,我们可以使用标准的rcrack。版本1.5是预先编译的,所以安装其实只是下载和解压缩的过程。
:~$wgethttp://project-rainbowcrack.com/rainbowcrack-1.5-linux64.zip
:~$unzip rainbowcrack-1.5-linux64.zip下载
设想一下:没有大量彩虹表的密码破解服务器会怎样?幸好我们有一大批技术高手,所以没必要把时间花在下载上。我们拷贝了以下的彩虹表:
fastlm_alpha-numeric#1-7_0
lm_all-space_1-7
lm_alpha_1-7
lm_alpha-numeric_1-7
lm_alpha-numeric-symbol32-space_1-7
ntlm-alpha-numeric-space_1-8
ntlm_alpha-space_1-9
ntlm_hybrid(loweralpha#6-6,numeric#1-3)
ntlm_hybrid(loweralpha#7-7,numeric#1-3)
ntlm_loweralpha-numeric-space_1-8
ntlm_loweralpha-numeric-symbol32-space_1-7_0
ntlm_loweralpha-space_1-9
ntlm_mixalpha-numeric_1-8
ntlm_mixalpha-numeric-all-space_1-6
ntlm_mixalpha-numeric-space_1-7_0
ntlm_numeric_1-12
Ophcrack_Tables-LM_Fast_Free
Ophcrack_Tables-NTLM_Free
sha1_loweralpha-numeric-space_1-8
wpa-h1kari_renderman
wpa-Offensive WPA Tables
字列表(Wordlist)是你似乎从来不嫌多的东西之一。我们汇集了一些流行的字列表;我确信,一旦服务器进入生产环境,我们会获得其他字列表方面的许多建议。
:/cracking/wordlists$wgethttp://download.openwall.net/pub/wordlists/all.gz
:/cracking/wordlists$wgethttp://downloads.skullsecurity.org/passwords/rockyou.txt.bz2
:/cracking/wordlists$wgethttp://downloads.skullsecurity.org/passwords/500-worst-passwords.txt.bz2
:/cracking/wordlists$wgethttp://downloads.skullsecurity.org/passwords/twitter-banned.txt.bz2
:/cracking/wordlists$wgethttp://downloads.skullsecurity.org/passwords/english.txt.bz2
:/cracking/wordlists$bunzip2 *.bz2
:/cracking/wordlists$gunzip all.gz
支持多用户环境
由于这个系统将由一群人来访问,我想确保没有谁干扰到别人。我写了这个简单的封装程序,那样要是有谁试图使用oclHashcat或pyrit,而别人在使用,就会被告知不许这么做。
:~$cat /cracking/bin/gpu-crack
#!/bin/bash
# gpu-crack - Simple GPU cracker wrapper for multi-user
#environments
# by Brad Antoniewicz
TMPFILE=&/tmp/check.tmp&
SUDO_EXEC=/usr/bin/sudo
PYRIT_EXEC=/usr/local/bin/pyrit.real
HASHCAT_EXEC=/cracking/bin/oclhash/oclHashcat64.bin
isRunning=0;
echo -e &/n$0 v$ver&
echo &by brad a.&
echo -e &-------------------------------------------------/n&
echo &Usage:&
echo -e &/t$0 [pyrit|hashcat] [options]/n&
echo &Define what program you want to crack with (pyrit or hashcat)&
echo &then provide the standard command line options that the cracker&
echo &supports.&
checkProc() {
ps ax -o pid,user,etime,command | grep $1 | grep -v grep | grep -v $0 | sed -e 's/^ //' & $TMPFILE
NUMPROC=`wc -l $TMPFILE | cut -d& & -f 1`
if [[ $NUMPROC != 0 ]]; then
echo -e &[!] Found $NUMPROC instance of $1 running/n&
for ((i=1; i&=$NUMPROC; i++))
#awk NR==$i &$TMPFILE&
PID=`awk NR==$i &$TMPFILE& | cut -d& & -f 1`
echo -e &/tPID: $PID&
echo -e &/tUser: `awk NR==$i &$TMPFILE& | cut -d& & -f 2`&
echo -e &/tRunning for: `awk NR==$i &$TMPFILE& | awk '{print $3}'`&
echo -e &/n&
isRunning=1;
echo -e &[-] No instances of $1 found&
launchProc() {
for x in &&
if [ $count != 0 ]; then
cmdlineArgs=$cmdlineArgs& &$x
let count++
echo &[+] Launching $1 with the following options&
echo -e &/t $cmdlineArgs&
if [[ $1 == &pyrit& ]]; then
echo &[+] Running Pyrit&
$SUDO_EXEC $PYRIT_EXEC $cmdlineArgs
elif [[ $1 == &hashcat& ]]; then
echo &[+] Running oclHashcat&
$SUDO_EXEC $HASHCAT_EXEC $cmdlineArgs
if[[ $# -ge 2 ]]&;&; [[$1 == &pyrit& || $1 == &hashcat& ]]; then
echo &[+] Checking for conflicting processes&
checkProc &pyrit&
checkProc &oclHash&
if [ $isRunning == 0 ]; then
launchProc
echo &[!!] Found conflicting process, contact owner and make it stop!&
由于rcrack、rcracki和john某种程度上需要从各自的程序目录下运行,于是我创建了几个别名,让用户可以轻松进入到合适的位置。另外,我们把大多数这些安装放到了一个集中位置(/cracking/bin),那样我们就能轻松维护(没有这些工具的实际程序包)。
:~$cat /etc/profile.d/pwserver.sh
# Set up all of the paths, directories, etc.. for password cracking
# by brad a.
alias john='cd /cracking/bin/john- echo Changing directory - Please run john from here with ./john'
alias rcrack='cd /cracking/bin/ echo -e &Changing directory - Please run rcrack from here with:/n./rcrack /path/to/tables/*.rt -f /path/to/pwdump&'
alias rcracki='cd /cracking/bin/rcracki_ echo -e &Changing directory - Please run rcracki from here with:/n./rcracki -f /path/to/pwdump /path/to/tables/&'
PATH=$PATH:/cracking/bin
export PATH
更改当日消息(MOTD)
要是没有有意思的MOTD,Foundstone服务器会是什么样?我忽略了实际的欢迎信息(存储在/etc/motd.tail中),因为它可能让人有点不快,以下是登录时启动的统计脚本。
:~$cd /etc/update-motd.d
:/etc/update-motd.d$sudo chmod -x *
:/etc/update-motd.d$sudo touch 10-pwserver
:/etc/update-motd.d$sudo chmod +x 10-pwserver
:/etc/update-motd.d$cat 10-pwserver
#!/bin/bash
# by Brad Antoniewicz
[ -f /etc/motd.tail ] &;&; cat /etc/motd.tail || true
TMPFILE=&/tmp/check.tmp&
isRunning=0;
processes=&oclHashcat64.bin hashcat pyrit oclHash john rcrack rcracki rcracki_mt&
checkProc() {
ps ax -o pid,user,etime,command | grep -w $1 | grep -v grep | grep -v $0 | sed -e 's/^ //' & $TMPFILE
NUMPROC=`wc -l $TMPFILE | cut -d& & -f 1`
if [[ $NUMPROC != 0 ]]; then
for ((i=1; i&=$NUMPROC; i++))
#awk NR==$i &$TMPFILE&
PID=`awk NR==$i &$TMPFILE& | cut -d& & -f 1`
echo -e &/tUser: `awk NR==$i &$TMPFILE& | cut -d& & -f 2` - Process: $1 -PID: $PID - Running For:`awk NR==$i &$TMPFILE& | awk '{print $3}'`&
isRunning=1;
echo Processes currently running
for i in $processes
checkProc $i
if [ $isRunning == 0 ]; then
echo -e &/tNone!&
fi基准测试
我们的pyrit基准测试结果相当不错:
:~$gpu-crack pyrit benchmark
/usr/local/bin/gpu-crack v0.1by brad a.
-------------------------------------------------
[+] Checking for conflicting processes
[-] No instances of pyrit found
[-] No instances of oclHash found
[+] Launching pyrit with the following options
[+] Running Pyrit
Pyrit 0.4.1-dev (svn r308) (C)
Lukas Lueghttp://pyrit.googlecode.com
This code is distributed under the GNU General Public License v3+
Running benchmark ( PMKs/s)... /
PMKs/s total.
#1: 'CAL++ Device #1 'AMD CAYMAN'': 51245.4 PMKs/s (RTT 1.0)
#2: 'CAL++ Device #2 'AMD CAYMAN'': 47993.0 PMKs/s (RTT 1.0)
#3: 'CAL++ Device #3 'AMD CAYMAN'': 51163.7 PMKs/s (RTT 1.0)
#4: 'CAL++ Device #4 'AMD CAYMAN'': 52829.2 PMKs/s (RTT 0.9)
#5: 'CPU-Core (SSE2/AES)': 713.9 PMKs/s (RTT 2.9)
#6: 'CPU-Core (SSE2/AES)': 736.3 PMKs/s (RTT 3.0)
#7: 'CPU-Core (SSE2/AES)': 821.7 PMKs/s (RTT 2.9)
#8: 'CPU-Core (SSE2/AES)': 763.8 PMKs/s (RTT 3.0)
:~$oclHashcat
oclHashcat看起来同样很好。引起我注意的一点是HW Monitors 2-4显示0% GPU。我不确信这是怎么回事,但肯定需要我好好调查一番。
:~$sudo ./oclExample.sh
oclHashcat v0.26 by atom starting...
Digests: 6494 entries, 6494 unique
Bitmaps: 16 bits, 65536 entries, 0x0000ffff mask, 262144 bytes
Platform: AMD compatible platform found
Watchdog: Temperature limit set to 90c
Device #1: Cayman, 1024MB, 0Mhz, 22MCU
Device #2: Cayman, 1024MB, 0Mhz, 22MCU
Device #3: Cayman, 1024MB, 0Mhz, 22MCU
Device #4: Cayman, 1024MB, 0Mhz, 22MCU
NOTE: gpu-accel auto-adjusted to: 16
Device #1: Kernel ./kernels/.Cayman.64.kernel
Device #2: Kernel ./kernels/.Cayman.64.kernel
Device #3: Kernel ./kernels/.Cayman.64.kernel
Device #4: Kernel ./kernels/.Cayman.64.kernel
42cceb8a0d3ca82b8fba11:mega
7becb9424f38abff581f6f2a82ff436a:sail00
--- CUT ----
c7dde2dd7772d22cdd459f:palytandra
[s]tatus [p]ause [r]esume [q]uit =&
Status.......: Exhausted
Hash.Type....: MD5
Mode.Left....: Mask '?l?l?l?l' (456976)
Mode.Right...: Dict 'example.dict' (129988)
Speed.GPU*...: 1761.3M/s
Recovered....:
Digests, 0/1 Salts
Progress.....: / (100.00%)
Running......: 18 secs
Estimated....: 0 secs
HW.Monitor.#1: 74% GPU, 71c Temp
HW.Monitor.#2:0% GPU, 53c Temp
HW.Monitor.#3:0% GPU, 43c Temp
HW.Monitor.#4:0% GPU, 42c Temp
Started: Tue Nov 22 20:25:38 2011
Stopped: Tue Nov 22 20:25:56 2011john
john只使用处理器,所以这方面没有出色的GPU统计数字,但仍有一些出色的结果。
john-1.7.8-jumbo-7/run$ ./john --test=30
Benchmarking: Traditional DES [128/128 BS SSE2-16]... DONE
Many salts: 4670K c/s real, 4685K c/s virtual
Only one salt: 3908K c/s real, 3920K c/s virtual
Benchmarking: BSDI DES (x725) [128/128 BS SSE2-16]... DONE
Many salts: 168806 c/s real, 169314 c/s virtual
Only one salt: 163686 c/s real, 164178 c/s virtual
Benchmarking: FreeBSD MD5 [8x]... DONE
Raw: 9768 c/s real, 9798 c/s virtual
Benchmarking: OpenBSD Blowfish (x32) [32/64 X2]... DONE
Raw: 870 c/s real, 873 c/s virtual
Benchmarking: Kerberos AFS DES [48/64 4K]... DONE
Short: 478762 c/s real, 480203 c/s virtual
Long: 1582K c/s real, 1587K c/s virtual
Benchmarking: LM DES [128/128 BS SSE2-16]... DONE
Raw: 25261K c/s real, 25337K c/s virtual
Benchmarking: Eggdrop [blowfish]... DONE
Raw: 29104 c/s real, 29191 c/s virtual
Benchmarking: DIGEST-MD5 [DIGEST-MD5 authentication]... DONE
Many salts: 1870K c/s real, 1876K c/s virtual
Only one salt: 1871K c/s real, 1876K c/s virtual
Benchmarking: More Secure Internet Password [RSA MD defined by BSAFE 1.x - Lotus v6]... DONE
Many salts: 101443 c/s real, 101748 c/s virtual
Only one salt: 60196 c/s real, 60378 c/s virtual
Benchmarking: EPiServer SID Hashes [SHA-1]... DONE
Many salts: 5542K c/s real, 5560K c/s virtual
Only one salt: 5257K c/s real, 5273K c/s virtual
Benchmarking: HTTP Digest access authentication [HDAA-MD5]... DONE
Many salts: 1988K c/s real, 1995K c/s virtual
Only one salt: 1940K c/s real, 1945K c/s virtual
Benchmarking: IPB2 MD5 [Invision Power Board 2.x salted MD5]... DONE
Many salts: 3988K c/s real, 4000K c/s virtual
Only one salt: 2485K c/s real, 2492K c/s virtual
Benchmarking: Kerberos v4 TGT [krb4 DES]... DONE
Raw: 3601K c/s real, 3612K c/s virtual
Benchmarking: Kerberos v5 TGT [krb5 3DES (des3-cbc-sha1)]... DONE
Raw: 63938 c/s real, 64130 c/s virtual
Benchmarking: MSCHAPv2 C/R MD4 DES [mschapv2]... DONE
Many salts: 3654K c/s real, 3666K c/s virtual
Only one salt: 2632K c/s real, 2640K c/s virtual
Benchmarking: MYSQL_fast [mysql-fast]... DONE
Raw: 42879K c/s real, 43009K c/s virtual
Benchmarking: MYSQL [mysql]... DONE
Raw: 5170K c/s real, 5185K c/s virtual
Benchmarking: LM C/R DES [netlm]... DONE
Many salts: 3621K c/s real, 3632K c/s virtual
Only one salt: 1216K c/s real, 1220K c/s virtual
Benchmarking: LMv2 C/R MD4 HMAC-MD5 [netlmv2]... DONE
Many salts: 1124K c/s real, 1127K c/s virtual
Only one salt: 908930 c/s real, 911665 c/s virtual
Benchmarking: NTLMv1 C/R MD4 DES [ESS MD5] [netntlm]... DONE
Many salts: 3651K c/s real, 3664K c/s virtual
Only one salt: 2652K c/s real, 2660K c/s virtual
Benchmarking: NTLMv2 C/R MD4 HMAC-MD5 [netntlmv2]... DONE
Many salts: 985779 c/s real, 989076 c/s virtual
Only one salt: 821367 c/s real, 823563 c/s virtual
Benchmarking: HalfLM C/R DES [nethalflm]... DONE
Many salts: 3622K c/s real, 3633K c/s virtual
Only one salt: 1825K c/s real, 1831K c/s virtual
Benchmarking: Netscape LDAP SSHA [salted SHA-1]... DONE
Many salts: 5197K c/s real, 5215K c/s virtual
Only one salt: 4738K c/s real, 4752K c/s virtual
Benchmarking: Netscape LDAP SHA [SHA-1]... DONE
Raw: 5029K c/s real, 5046K c/s virtual
Benchmarking: Netscreen MD5 [NS MD5]... DONE
Raw: 6159K c/s real, 6180K c/s virtual
Benchmarking: NT MD4 [128/128 X2 SSE2-16]... DONE
Raw: 47690K c/s real, 47849K c/s virtual
Benchmarking: OpenLDAP SSHA [salted SHA-1]... DONE
Many salts: 5281K c/s real, 5299K c/s virtual
Only one salt: 4883K c/s real, 4896K c/s virtual
Benchmarking: PHPS -- md5(md5($pass).$salt) [SSE2 16x4x2 (intr)]... DONE
Many salts: 9277K c/s real, 9305K c/s virtual
Only one salt: 3937K c/s real, 3949K c/s virtual
Benchmarking: Post.Office MD5 [STD]... DONE
Many salts: 4450K c/s real, 4463K c/s virtual
Only one salt: 4135K c/s real, 4146K c/s virtual
Benchmarking: Mac OS X 10.4 - 10.6 salted SHA-1 [32/64]... DONE
Many salts: 5886K c/s real, 5903K c/s virtual
Only one salt: 5575K c/s real, 5591K c/s virtual
Benchmarking: HMAC MD5 [hmac-md5]... DONE
Raw: 2043K c/s real, 2049K c/s virtual
Benchmarking: Lotus5 [Lotus v5 Proprietary]... DONE
Raw: 202395 c/s real, 203004 c/s virtual
Benchmarking: Generic salted MD4 [32/64]... DONE
Many salts: 9250K c/s real, 9278K c/s virtual
Only one salt: 8647K c/s real, 8673K c/s virtual
Benchmarking: MediaWiki -- md5($s.'-'.md5($p)) [SSE2 16x4x2 (intr)]... DONE
Many salts: 8465K c/s real, 8490K c/s virtual
Only one salt: 3815K c/s real, 3827K c/s virtual
Benchmarking: M$ Cache Hash [Generic 1x]... DONE
Many salts: 21450K c/s real, 21522K c/s virtual
Only one salt: 8711K c/s real, 8734K c/s virtual
Benchmarking: M$ Cache Hash 2 (DCC2) [SSE2-para 8x]... DONE
Raw: 402 c/s real, 403 c/s virtual
Benchmarking: MS Kerberos 5 AS-REQ Pre-Auth [mskrb5]... DONE
Many salts: 1153K c/s real, 1157K c/s virtual
Only one salt: 634491 c/s real, 636400 c/s virtual
Benchmarking: MS-SQL [mssql]... DONE
Many salts: 5505K c/s real, 5523K c/s virtual
Only one salt: 4844K c/s real, 4858K c/s virtual
Benchmarking: MS-SQL05 [ms-sql05]... DONE
Many salts: 5502K c/s real, 5521K c/s virtual
Only one salt: 5141K c/s real, 5156K c/s virtual
Benchmarking: MySQL 4.1 double-SHA-1 [mysql-sha1]... DONE
Raw: 2713K c/s real, 2722K c/s virtual
Benchmarking: Oracle 11g [oracle11]... DONE
Many salts: 5270K c/s real, 5287K c/s virtual
Only one salt: 4746K c/s real, 4759K c/s virtual
Benchmarking: Oracle [oracle]... DONE
Raw: 929803 c/s real, 932601 c/s virtual
Benchmarking: PHPass MD5 [SSE2 2x4x2 (intr)]... DONE
Raw: 4891 c/s real, 4905 c/s virtual
Benchmarking: PIX MD5 [pix-md5]... DONE
Raw: 6940K c/s real, 6963K c/s virtual
Benchmarking: pkzip [N/A]... DONE
Many salts: 10279K c/s real, 10314K c/s virtual
Only one salt: 7708K c/s real, 7731K c/s virtual
Benchmarking: Raw MD4 [32/64]... DONE
Raw: 9177K c/s real, 9205K c/s virtual
Benchmarking: Raw MD5 [SSE2 16x4x2 (intr)]... DONE
Raw: 8754K c/s real, 8780K c/s virtual
Benchmarking: Raw SHA-1(8x) [SHA-1]... DONE
Raw: 7107K c/s real, 7128K c/s virtual
Benchmarking: md5(unicode($p)) [SSE2 16x4x2 (intr)]... DONE
Raw: 7508K c/s real, 7531K c/s virtual
Benchmarking: Salted SHA(8x) [SHA-1]... DONE
Many salts: 7616K c/s real, 7638K c/s virtual
Only one salt: 6608K c/s real, 6628K c/s virtual
Benchmarking: SAP BCODE [sapb]... DONE
Many salts: 2387K c/s real, 2394K c/s virtual
Only one salt: 2047K c/s real, 2054K c/s virtual
Benchmarking: SAP CODVN G (PASSCODE) [sapg]... DONE
Many salts: 1753K c/s real, 1758K c/s virtual
Only one salt: 1647K c/s real, 1651K c/s virtual
Benchmarking: Generic salted SHA-1 [32/64]... DONE
Many salts: 5175K c/s real, 5191K c/s virtual
Only one salt: 4947K c/s real, 4962K c/s virtual
Benchmarking: Tripcode DES [48/64 4K]... DONE
Raw: 383812 c/s real, 384967 c/s virtual
Benchmarking:md5_gen(0): md5($p)(raw-md5)[SSE2 16x4x2 (intr)]... DONE
Raw: 8783K c/s real, 8809K c/s virtual
Benchmarking:md5_gen(1): md5($p.$s)(joomla)[SSE2 16x4x2 (intr)]... DONE
Many salts: 8105K c/s real, 8130K c/s virtual
Only one salt: 6881K c/s real, 6901K c/s virtual
Benchmarking:md5_gen(2): md5(md5($p))(e107)[SSE2 16x4x2 (intr)]... DONE
Raw: 4504K c/s real, 4517K c/s virtual
Benchmarking:md5_gen(3): md5(md5(md5($p)))[SSE2 16x4x2 (intr)]... DONE
Raw: 3028K c/s real, 3037K c/s virtual
Benchmarking:md5_gen(4): md5($s.$p)(OSC)[SSE2 16x4x2 (intr)]... DONE
Many salts: 8218K c/s real, 8246K c/s virtual
Only one salt: 6975K c/s real, 6996K c/s virtual
Benchmarking:md5_gen(5): md5($s.$p.$s)[SSE2 16x4x2 (intr)]... DONE
Many salts: 7621K c/s real, 7647K c/s virtual
Only one salt: 6508K c/s real, 6527K c/s virtual
Benchmarking:md5_gen(6): md5(md5($p).$s)[SSE2 16x4x2 (intr)]... DONE
Many salts: 9179K c/s real, 9210K c/s virtual
Only one salt: 3980K c/s real, 3992K c/s virtual
Benchmarking:md5_gen(8): md5(md5($s).$p)[SSE2 16x4x2 (intr)]... DONE
Many salts: 8335K c/s real, 8363K c/s virtual
Only one salt: 7023K c/s real, 7044K c/s virtual
Benchmarking:md5_gen(9): md5($s.md5($p))[SSE2 16x4x2 (intr)]... DONE
Many salts: 8166K c/s real, 8193K c/s virtual
Only one salt: 3772K c/s real, 3783K c/s virtual
Benchmarking:md5_gen(10): md5($s.md5($s.$p))[SSE2 16x4x2 (intr)]... DONE
Many salts: 4129K c/s real, 4143K c/s virtual
Only one salt: 3774K c/s real, 3786K c/s virtual
Benchmarking:md5_gen(11): md5($s.md5($p.$s))[SSE2 16x4x2 (intr)]... DONE
Many salts: 4150K c/s real, 4164K c/s virtual
Only one salt: 3798K c/s real, 3809K c/s virtual
Benchmarking:md5_gen(12): md5(md5($s).md5($p))(IPB)[SSE2 16x4x2 (intr)]... DONE
Many salts: 4408K c/s real, 4423K c/s virtual
Only one salt: 2623K c/s real, 2631K c/s virtual
Benchmarking:md5_gen(13): md5(md5($p).md5($s))[SSE2 16x4x2 (intr)]... DONE
Many salts: 4404K c/s real, 4419K c/s virtual
Only one salt: 2626K c/s real, 2634K c/s virtual
Benchmarking:md5_gen(14): md5($s.md5($p).$s)[SSE2 16x4x2 (intr)]... DONE
Many salts: 7626K c/s real, 7649K c/s virtual
Only one salt: 3795K c/s real, 3806K c/s virtual
Benchmarking:md5_gen(15): md5($u.md5($p).$s)[64x2 (MD5_Body)]... DONE
Many salts: 9853K c/s real, 9883K c/s virtual
Only one salt: 4757K c/s real, 4772K c/s virtual
Benchmarking:md5_gen(16): md5(md5(md5($p).$s).$s2)[64x2 (MD5_Body)]... DONE
Many salts: 5344K c/s real, 5362K c/s virtual
Only one salt: 3170K c/s real, 3179K c/s virtual
Benchmarking:md5_gen(17): phpass ($P$ or $H$)[SSE2 2x4x2 (intr)]... DONE
Raw: 4902 c/s real, 4915 c/s virtual
Benchmarking:md5_gen(18): md5($s.Y.$p.0xF7.$s) (Post.Office MD5)[64x2 (MD5_Body)]... DONE
Many salts: 4341K c/s real, 4354K c/s virtual
Only one salt: 3981K c/s real, 3993K c/s virtual
Benchmarking:md5_gen(19): Cisco PIX (MD5) [SSE2 16x4x2 (intr)]... DONE
Raw: 7481K c/s real, 7503K c/s virtual
Benchmarking:md5_gen(20): Cisco PIX (MD5 salted) [SSE2 16x4x2 (intr)]... DONE
Many salts: 8171K c/s real, 8196K c/s virtual
Only one salt: 6907K c/s real, 6928K c/s virtual
Benchmarking:md5_gen(21): HTTP Digest Access Auth [SSE2 16x4x2 (intr)]... DONE
Many salts: 2027K c/s real, 2033K c/s virtual
Only one salt: 1960K c/s real, 1966K c/s virtual
Benchmarking:md5_gen(22): md5(sha1($p)) [SSE2 16x4x2 (intr)]... DONE
Raw: 3391K c/s real, 3401K c/s virtual
Benchmarking:md5_gen(23): sha1(md5($p)) [SSE2 16x4x2 (intr)]... DONE
Raw: 3223K c/s real, 3233K c/s virtual
Benchmarking:md5_gen(24): sha1($p.$s) [SSE2 16x4x2 (intr)]... DONE
Many salts: 6076K c/s real, 6094K c/s virtual
Only one salt: 5242K c/s real, 5258K c/s virtual
Benchmarking:md5_gen(25): sha1($s.$p) [SSE2 16x4x2 (intr)]... DONE
Many salts: 5946K c/s real, 5964K c/s virtual
Only one salt: 5315K c/s real, 5331K c/s virtual
Benchmarking:md5_gen(26): sha1($p) raw-sha1 [4x2]... DONE
Raw: 6373K c/s real, 6393K c/s virtual
Benchmarking:md5_gen(27): FreeBSD MD5 [SSE2 4x2 (intr)]... DONE
Raw: 9502 c/s real, 9531 c/s virtual
Benchmarking:md5_gen(28): Apache MD5 [SSE2 4x2 (intr)]... DONE
Raw: 9456 c/s real, 9485 c/s virtual
Benchmarking:md5_gen(29): md5(unicode($p)) [SSE2 16x4x2 (intr)]... DONE
Raw: 7411K c/s real, 7436K c/s virtual
Benchmarking: md5_gen(1001) md5(md5(md5(md5($p)))) [SSE2 16x4x2 (intr)]... DONE
Raw: 2270K c/s real, 2278K c/s virtual
Benchmarking: md5_gen(1002) md5(md5(md5(md5(md5($p))))) [SSE2 16x4x2 (intr)]... DONE
Raw: 1823K c/s real, 1829K c/s virtual
Benchmarking: md5_gen(1003) md5(md5($p).md5($p)) [64x2 (MD5_Body)]... DONE
Raw: 2896K c/s real, 2905K c/s virtual
Benchmarking: md5_gen(1004) md5(md5(md5(md5(md5(md5($p)))))) [SSE2 16x4x2 (intr)]... DONE
Raw: 1523K c/s real, 1528K c/s virtual
Benchmarking: md5_gen(1005) md5(md5(md5(md5(md5(md5(md5($p))))))) [SSE2 16x4x2 (intr)]... DONE
Raw: 1308K c/s real, 1312K c/s virtual
Benchmarking: md5_gen(1006) md5(md5(md5(md5(md5(md5(md5(md5($p)))))))) [SSE2 16x4x2 (intr)]... DONE
Raw: 1145K c/s real, 1149K c/s virtual
Benchmarking: md5_gen(1008) md5($p.$s) [joomla] [SSE2 16x4x2 (intr)]... DONE
Many salts: 8105K c/s real, 8130K c/s virtual
Only one salt: 6868K c/s real, 6889K c/s virtual
Benchmarking: Raw SHA-224 [32/64]... DONE
Raw: 2577K c/s real, 2584K c/s virtual
Benchmarking: Raw SHA-256 [32/64]... DONE
Raw: 2600K c/s real, 2608K c/s virtual
Benchmarking: Raw SHA-384 [64/64]... DONE
Raw: 2054K c/s real, 2061K c/s virtual
Benchmarking: Raw SHA-512 [64/64]... DONE
Raw: 2054K c/s real, 2060K c/s virtual
Benchmarking: Mac OS X 10.7+ salted SHA-512 [64/64]... DONE
Many salts: 2098K c/s real, 2104K c/s virtual
Only one salt: 2056K c/s real, 2062K c/s virtual
Benchmarking: hmailserver [32/64]... DONE
Many salts: 2607K c/s real, 2614K c/s virtual
Only one salt: 2488K c/s real, 2495K c/s virtual
Benchmarking: sybasease [32/64]... DONE
Many salts: 344041 c/s real, 345076 c/s virtual
Only one salt: 341478 c/s real, 342505 c/s virtual
Benchmarking: generic crypt(3) [?/64]... DONE
Many salts: 405132 c/s real, 406351 c/s virtual
Only one salt: 403443 c/s real, 404657 c/s virtual
Benchmarking: ssh [32/64]... DONE
Raw: 268979 c/s real, 269878 c/s virtual
Benchmarking: pdf [32/64]... DONE
Many salts: 22014 c/s real, 22087 c/s virtual
Only one salt: 45401 c/s real, 45537 c/s virtual
Benchmarking: rar [32/64]... DONE
Raw: 48.2 c/s real, 48.3 c/s virtual
Benchmarking: zip [32/64]... DONE
Raw: 766 c/s real, 769 c/s virtual
Benchmarking: dummy [N/A]... DONE
Raw: 126288K c/s real, 126710K c/s virtual
与许多安装一样,我们开始遇到了几个小麻烦,但是现在我们的服务器看起来很好。在我们将它投入到实际生产环境之前,我们将锁定用户权限、角色,并设置了几项计划任务(cron job),确保系统整洁。
以上是的内容，更多
的内容，请您使用右上方搜索功能获取相关信息。
若你要投稿、删除文章请联系邮箱：zixun-group@service.aliyun.com,工作人员会在五个工作日内给你回复。
云服务器 ECS
可弹性伸缩、安全稳定、简单易用
&40.8元/月起
预测未发生的攻击
&24元/月起
为您提供0门槛上云实践机会
你可能还喜欢
你可能感兴趣
阿里云教程中心为您免费提供
如何搭建密码破解服务器相关信息，包括
的信息，所有如何搭建密码破解服务器相关内容均不代表阿里云的意见！投稿删除文章请联系邮箱：zixun-group@service.aliyun.com，工作人员会在五个工作日内答复
售前咨询热线
支持与服务
资源和社区
关注阿里云
International