faster way of determing if the passphrase is correct or not

David Shaw dshaw at jabberwocky.com
Tue Apr 12 05:58:31 CEST 2005


On Mon, Apr 11, 2005 at 08:11:15PM +0200, folkert at vanheusden.com wrote:
> > > That's what it is for yes (http://www.vanheusden.com/nasty/) - altough
> > > I also create friendly programs (http://www.vanheusden.com/gpgstats/ - generate
> > Passphrase crackers are in fact very useful tools to check for
> > security problems.
> 
> True. Though: the current version needs 2 days (on a P4 2,8GHz) for a character
> set of 63 (a-z+A-Z+0-9+' ').
> I'll see if I can code a version doing the passphrase-change.

This method will work, but if you really want performance, you would
do better by lifting the necessary code directly out of GnuPG.  There
is a lot of overhead that you could skip.

David



More information about the Gnupg-devel mailing list