I don't know much of Ubuntu, but is Ubuntu able to decode these sort of things? Or do I need to install some program? If I don't, how do I use Ubuntu to read the file?
Asked
Active
Viewed 2.8e+01k times
7 Answers
20
You need to install "John the Ripper".
$ apt install john
Then only 2 commands
$ unshadow /etc/passwd /etc/shadow > mypasswd.txt
$ john mypasswd.txt
When it is finishes (in 1-5 min for password with 4 numbers), you'll see password you need.
$ john --show mypasswd.txt
Artur Meinild
- 31,035
Jule Rulez
- 301
17
In short - you can't!
/etc/shadow stores a hashed version of the password. This is, for all intents and purposes, impossible to recover because hashing is a one way operation.
This stops malicious people being able to read the passwords of users on the system.
jackweirdy
- 3,520
- 5
- 27
- 42
8
here's the deal. You can't decrypt a hashed password, that would ruin the point of hashing.
Hashing works in basic terms, that you take a random string and mix that up (using a certain algorithm) with the password so that it becomes totally unreadable. Then you store this password + hash in a database.
Then how do you know what the correct password is? Well you enter the password and take that same hash string and then you will get the same hash. Then simply compare those hashes and you know if the password is correct.
You can find out what password the user used, but then you need to know what hash string was used to hash it and also you need to know what hashing algorithm was used. Then in the end the solution is still to brute-force the password(try every combination) then hash it and see if it matches the hash that's stored in the database. So for a conclusion, you can "decrypt" a hashed password, but it's not easy.
useful links on the topic:
5
Let's make it simple : No. Passwords are not meant to be decrypted, what would be the point ? No technique, no utility will allow you to do such a thing. Behind those passwords are huge algorithms meant to be one-way only.
However, you can read the file (and see encrypted passwords) by doing :
sudo cat /etc/shadow
You'll need to be a sudoer, or root himself (in which case, sudo is useless)
John WH Smith
- 2,018
2
Ubuntu can't decrypt passwords but you may find john useful:
http://manpages.ubuntu.com/manpages/jaunty/en/man8/john.8.html
Mausy5043
- 760
1
Yes you can
If you want to decode this password then you need to install john the ripper in your ubuntu with sudo apt-get install john. you just need to copy line of that hash code and create a new file with .PASSWD extension and insert that file into john the ripper tool. It will automatically crack those hashes and give you the password of that particular user.
Rinzwind
- 309,379
1
Never assume a "hashed" password is always safe, not decryptable and uncrackable.
It all depends how the passwords has been "hashed" and what cryptographic algorithm was used, what techniques was used to hash a password and so on. There are dedicated hardware just to crack weak hashed passwords.
Most common way to figure out a hashed password is to use brute force dictionary program to decrypt and figure out a hashed password. This by no means it always works but it is useful. You'll be surprised how many people uses common easy to figure passwords and the brute force dictionary has tons of common passwords which are hashed and it compares it's value with the hashed password to find a match.
Because of this cryptographic developers came up with the "salt" and "pepper" hashing. Basically makes the common easy to guess passwords harder to crack since they will always be a unique hashed password.
End of the day, yes hashed passwords can be cracked if it is weakly hashed.
Here is a video on how to crack hashed passwords using "Hashcat": https://www.youtube.com/watch?v=eq097dEB8Sw
Many factors comes to play when you want a hashed password uncrackable, making it extremely difficult to decrypt.
Max Dax
- 89