Slashdot Mirror

← Back to Stories (view on slashdot.org)

Free Rainbow Tables Looking For New Admin

Posted by kdawson on from the all-the-colors dept.

lee writes "After almost three years online, the admin of Free Rainbow Tables has decided to call it a day, citing a lack of time to keep it running. (I'm sure that you all know a rainbow table is essentially a giant list of precomputed hashes.) This is a shame, as the site is a useful resource for those occasions when you really need an existing password exposed, rather than simply changing it. I'm a Windows admin, and this site has come in very handy in the past. The currently computed tables weigh in at well over half a terabyte, are available as torrents from the site, or from a couple of mirrors (and alternatives are available). When the site was active, it featured a downloadable BOINC client to put your idle cycles to work computing ever-greater tables, and a space-saving format for storing the tables. The admin is willing to hand over source code if you wish to take over, though I suspect hosting is not included!"

10 of 95 comments (clear)

  1. Support is pending by 192939495969798999 · · Score: 4, Insightful

    I am sure that plenty of groups that may "need an existing password exposed" are interested in anonymously donating hosting for this project.

    --
    stuff |
    1. Re:Support is pending by nametaken · · Score: 2, Insightful

      Or pay-for-download and/or pay-for-lookup service, and keep the site online.

    2. Re:Support is pending by CarpetShark · · Score: 2, Insightful

      I am sure that plenty of groups...are interested in anonymously donating hosting for this project.

      You think? Personally, I think you'd have to be a glutton for punishment, to want to admin a site for people interested in rainbow tables.

  2. OMG is that annoying... by sunking2 · · Score: 1, Insightful

    If you assume that everyone knows what it means then why are you telling us what it means knowing damned well that probably 99% of the audience doesn't actually know what it means, or cares for that matter. It makes you come across demeaning to the vast majority of people who could give a crap.

    1. Re:OMG is that annoying... by Shikaku · · Score: 5, Insightful

      News for Nerds.

    2. Re:OMG is that annoying... by RiotingPacifist · · Score: 3, Insightful

      Because slashdot used to be a site for geeks, however recently anytime somebody uses a simple TLA/ETLA people start bitching that they don't know what it meant and they are too lazy to google and/or wikipeida it, so instead you get a stupid thread full of people who have !RTFA commenting on a subject that is of no interest to them, if it was they would have understood the TLA in TFS, this really annoys the few geeks that actually RTFA as it dilutes the comments. As a TFS contains redundant information to prevent people going "what are rainbow tables?", lets be honest if you're the kind of geek that has ever done any 'cracking' you knew what it mean, if you're not then you don't care.

      p.s irony of this post not lost on me!

      --
      IranAir Flight 655 never forget!
    3. Re:OMG is that annoying... by Obfuscant · · Score: 4, Insightful
      lets be honest if you're the kind of geek that has ever done any 'cracking' you knew what it mean, if you're not then you don't care.

      Let's be honest, I'm a kind of geek that has done cracking, but I don't devote my life to it. I've never heard the term "rainbow table" applied to the lists of precomputed hashes, so it was nice to have a simple hint that said "precomputed hashes", and I do care.

  3. Re:Salts? by RiotingPacifist · · Score: 4, Insightful

    The site host/cracked NTLM LM MD5

    NTLM is still used in the following situations:
    * The client is authenticating to a server using an IP address.
    * The client is authenticating to a server that belongs to a different Active Directory forest, or doesn't belong to a domain.
    * No Active Directory domain exists (commonly referred to as "workgroup" or "peer-to-peer").
    * Where a firewall would otherwise restrict the ports required by Kerberos (of which there are quite a few)

    So kids getting their teeth wet on home networks, which probably explains why its not being supported. MD5 is still used by applications that arn't quite sure what they are doing/can't do much more e.g grub, im clients, etc.

    Lookup tables are still useful in cracking WPA

    --
    IranAir Flight 655 never forget!
  4. Whoops by neokushan · · Score: 4, Insightful

    Slashdotting the site really isn't helping to keep it online.

    --
    +1 IDisagreeSoHeMustBeATrollOrAnAstroturferOrAShill
  5. Re:Salts? by zindorsky · · Score: 4, Insightful

    Once you've reverted the hash back to salt+plaintext, it's *much* easier to remove the salt (often some string concatenated with the plaintext).

    Often? That's the definition of salt.

    Also, rainbow tables don't revert the hash back to salt+plaintext. Rainbow Tables don't work if salt was (correctly) used. Well, I guess you could make a set of RTs for every possible salt value ... if you have an ice age or two to wait.

    --
    If the geiger counter does not click, the coffee, she is not thick.