pkg://john-1.6.38-7.src.rpm:14558377/john.8.gz
info downloads
.\" Automatically generated by Pod::Man v1.37, Pod::Parser v1.13
.\"
.\" Standard preamble:
.\" ========================================================================
.de Sh \" Subsection heading
.br
.if t .Sp
.ne 5
.PP
\fB\\$1\fR
.PP
..
.de Sp \" Vertical space (when we can't use .PP)
.if t .sp .5v
.if n .sp
..
.de Vb \" Begin verbatim text
.ft CW
.nf
.ne \\$1
..
.de Ve \" End verbatim text
.ft R
.fi
..
.\" Set up some character translations and predefined strings. \*(-- will
.\" give an unbreakable dash, \*(PI will give pi, \*(L" will give a left
.\" double quote, and \*(R" will give a right double quote. | will give a
.\" real vertical bar. \*(C+ will give a nicer C++. Capital omega is used to
.\" do unbreakable dashes and therefore won't be available. \*(C` and \*(C'
.\" expand to `' in nroff, nothing in troff, for use with C<>.
.tr \(*W-|\(bv\*(Tr
.ds C+ C\v'-.1v'\h'-1p'\s-2+\h'-1p'+\s0\v'.1v'\h'-1p'
.ie n \{\
. ds -- \(*W-
. ds PI pi
. if (\n(.H=4u)&(1m=24u) .ds -- \(*W\h'-12u'\(*W\h'-12u'-\" diablo 10 pitch
. if (\n(.H=4u)&(1m=20u) .ds -- \(*W\h'-12u'\(*W\h'-8u'-\" diablo 12 pitch
. ds L" ""
. ds R" ""
. ds C` ""
. ds C' ""
'br\}
.el\{\
. ds -- \|\(em\|
. ds PI \(*p
. ds L" ``
. ds R" ''
'br\}
.\"
.\" If the F register is turned on, we'll generate index entries on stderr for
.\" titles (.TH), headers (.SH), subsections (.Sh), items (.Ip), and index
.\" entries marked with X<> in POD. Of course, you'll have to process the
.\" output yourself in some meaningful fashion.
.if \nF \{\
. de IX
. tm Index:\\$1\t\\n%\t"\\$2"
..
. nr % 0
. rr F
.\}
.\"
.\" For nroff, turn off justification. Always turn off hyphenation; it makes
.\" way too many mistakes in technical documents.
.hy 0
.if n .na
.\"
.\" Accent mark definitions (@(#)ms.acc 1.5 88/02/08 SMI; from UCB 4.2).
.\" Fear. Run. Save yourself. No user-serviceable parts.
. \" fudge factors for nroff and troff
.if n \{\
. ds #H 0
. ds #V .8m
. ds #F .3m
. ds #[ \f1
. ds #] \fP
.\}
.if t \{\
. ds #H ((1u-(\\\\n(.fu%2u))*.13m)
. ds #V .6m
. ds #F 0
. ds #[ \&
. ds #] \&
.\}
. \" simple accents for nroff and troff
.if n \{\
. ds ' \&
. ds ` \&
. ds ^ \&
. ds , \&
. ds ~ ~
. ds /
.\}
.if t \{\
. ds ' \\k:\h'-(\\n(.wu*8/10-\*(#H)'\'\h"|\\n:u"
. ds ` \\k:\h'-(\\n(.wu*8/10-\*(#H)'\`\h'|\\n:u'
. ds ^ \\k:\h'-(\\n(.wu*10/11-\*(#H)'^\h'|\\n:u'
. ds , \\k:\h'-(\\n(.wu*8/10)',\h'|\\n:u'
. ds ~ \\k:\h'-(\\n(.wu-\*(#H-.1m)'~\h'|\\n:u'
. ds / \\k:\h'-(\\n(.wu*8/10-\*(#H)'\z\(sl\h'|\\n:u'
.\}
. \" troff and (daisy-wheel) nroff accents
.ds : \\k:\h'-(\\n(.wu*8/10-\*(#H+.1m+\*(#F)'\v'-\*(#V'\z.\h'.2m+\*(#F'.\h'|\\n:u'\v'\*(#V'
.ds 8 \h'\*(#H'\(*b\h'-\*(#H'
.ds o \\k:\h'-(\\n(.wu+\w'\(de'u-\*(#H)/2u'\v'-.3n'\*(#[\z\(de\v'.3n'\h'|\\n:u'\*(#]
.ds d- \h'\*(#H'\(pd\h'-\w'~'u'\v'-.25m'\f2\(hy\fP\v'.25m'\h'-\*(#H'
.ds D- D\\k:\h'-\w'D'u'\v'-.11m'\z\(hy\v'.11m'\h'|\\n:u'
.ds th \*(#[\v'.3m'\s+1I\s-1\v'-.3m'\h'-(\w'I'u*2/3)'\s-1o\s+1\*(#]
.ds Th \*(#[\s+2I\s-2\h'-\w'I'u*3/5'\v'-.3m'o\v'.3m'\*(#]
.ds ae a\h'-(\w'a'u*4/10)'e
.ds Ae A\h'-(\w'A'u*4/10)'E
. \" corrections for vroff
.if v .ds ~ \\k:\h'-(\\n(.wu*9/10-\*(#H)'\s-2\u~\d\s+2\h'|\\n:u'
.if v .ds ^ \\k:\h'-(\\n(.wu*10/11-\*(#H)'\v'-.4m'^\v'.4m'\h'|\\n:u'
. \" for low resolution devices (crt and lpr)
.if \n(.H>23 .if \n(.V>19 \
\{\
. ds : e
. ds 8 ss
. ds o a
. ds d- d\h'-1'\(ga
. ds D- D\h'-1'\(hy
. ds th \o'bp'
. ds Th \o'LP'
. ds ae ae
. ds Ae AE
.\}
.rm #[ #] #H #V #F C
.\" ========================================================================
.\"
.IX Title "JOHN 1"
.TH JOHN 1 "2004-02-27" "perl v5.8.1" "User Contributed Perl Documentation"
.SH "NAME"
john \- "John the Ripper" detects weak passwords like first names, common
expressions etc. on your system.
.SH "SYNOPSYS"
.IX Header "SYNOPSYS"
john [\s-1OPTIONS\s0] <password_files>
.PP
You can list any number of password files on John's command line, and also
specify some of the following options:
.PP
.Vb 19
\& -single "single crack" mode
\& -wordlist:FILE wordlist mode, read words from FILE,
\& -stdin or from stdin
\& -rules enable rules for wordlist mode
\& -incremental[:MODE] incremental mode [using section MODE]
\& -external:MODE external mode or word filter
\& -stdout[:LENGTH] no cracking, write words to stdout
\& -restore[:FILE] restore an interrupted session
\& -session:FILE set session file name to FILE
\& -status[:FILE] print status of a session [from FILE]
\& -makechars:FILE make a charset, overwriting FILE
\& -show show cracked passwords
\& -test perform a benchmark
\& -users:[-]LOGIN|UID[,..] load this (these) user(s) only
\& -groups:[-]GID[,..] load this (these) group(s) only
\& -shells:[-]SHELL[,..] load this (these) shell(s) only
\& -salts:[-]COUNT set a passwords per salt limit
\& -format:NAME force ciphertext format NAME
\& -savemem:LEVEL enable memory saving, at LEVEL 1..3
.Ve
.SH "DESCRIPTION"
.IX Header "DESCRIPTION"
John the Ripper is a password cracker, currently available for \s-1UNIX\s0, \s-1DOS\s0,
WinNT/Win95. Its primary purpose is to detect weak \s-1UNIX\s0 passwords. It has
been tested with Linux x86/Alpha/SPARC, FreeBSD x86, OpenBSD x86, Solaris
2.x \s-1SPARC\s0 and x86, Digital \s-1UNIX\s0, \s-1AIX\s0, \s-1HP\-UX\s0, and \s-1IRIX\s0.
.PP
The \s-1DOS\s0 and Win32 ports are done with \s-1DJGPP\s0 and Cygnus Developer's Kit,
respectively.
.SH "EXAMPLES"
.IX Header "EXAMPLES"
To run John, you need to supply it with some password files and optionally
specify a cracking mode, like this, using the default order of modes, and
assuming that passwd is a copy of your password file:
.PP
.Vb 1
\& john /etc/shadow
.Ve
.PP
or, to make it use a wordlist with rules only:
.PP
.Vb 1
\& john -wordlist:/var/lib/john/wordlists/all -rules /etc/shadow
.Ve
.PP
Cracked passwords will be printed to the terminal and saved in file called
~/john.pot (in this text '~' means John's \*(L"home directory\*(R", that is, the
directory you installed John's binary in). This file is also used not to
load passwords that you already cracked, when you run John the next time.
To retrieve the cracked passwords, run:
.PP
.Vb 1
\& john -show /etc/shadow
.Ve
.PP
While cracking, you can press any key for status, or Ctrl+C to abort the
session, saving point information to a file (~/restore by default). By the
way, if you press Ctrl+C twice John will abort immediately without saving.
The point information is also saved every 10 minutes (configurable in the
configuration file, ~/john.ini) in case of a crash.
.PP
To continue an interrupted session, run:
.PP
.Vb 1
\& john -restore
.Ve
.PP
Anyway, you probably should have a look at doc/OPTIONS for a list of all
the command line options, and at doc/EXAMPLES for more John usage examples
with other cracking modes.
.SH "Features and Performance"
.IX Header "Features and Performance"
John the Ripper is designed to be both feature-rich and fast. It combines
several cracking modes in one program, and is fully configurable for your
particular needs (you can even define a custom cracking mode using the
built-in compiler supporting a subset of C). Also, John is available for
several different platforms, which enables you to use the same cracker
everywhere (for example even continue a cracking session that you started
on another platform).
.PP
Out of the box, John supports (and autodetects) the following Unix crypt(3)
hash types: traditional and double-length DES\-based, \s-1BSDI\s0's extended DES\-based,
FreeBSD's MD5\-based (now also used on Linux and in Cisco IOS), and OpenBSD's Blowfish\-based
(now also used on some Linux distributions). Also supported out of the box are Kerberos/AFS and
Windows NT/2000/XP LM (DES-based) hashes.
.PP
With just one extra command (required to extract the passwords), John can
crack \s-1AFS\s0 passwords and WinNT \s-1LM\s0 hashes.
.PP
Unlike other crackers, John doesn't use a \fIcrypt\fR\|(3)\-style routine. Instead,
it has its own highly optimized modules for different ciphertext formats
and architectures. Some of the algorithms used, such as bitslice\&\s-1DES,
couldn't have been implemented within the crypt(3) API; they require a more
powerful interface such as the one used in John. Additionally, there're assembly
language routines for several processor architectures, most importantly for x86 with MMX.
.SH "AUTHOR"
.IX Header "AUTHOR"
Solar Designer solar@false.com
.SH "SEE ALSO"
.IX Header "SEE ALSO"
The rest of documentation is located in separate files, listed here in the
recommended reading order:
.PP
.Vb 11
\& INSTALL - you've probably read it already
\& OPTIONS - command line options, and additional utilities
\& MODES - cracking modes: what they are
\& CONFIG (*) - how to customize
\& RULES (*) - wordlist rules syntax
\& EXTERNAL (*) - defining an external mode
\& EXAMPLES - usage examples -- strongly recommended
\& FAQ - guess
\& NEWS - history of changes
\& CREDITS - credits, and how to contact me
\& (*) most users can safely skip these
.Ve
.PP
You can find these files at /usr/share/doc/packages/john/
.PP
Happy reading!
