Quote:
Originally Posted by Oneill
Hi geekmaster, thanks for reply. No I did not change the password. Why 4 hex digits? I thought that max pass length is 8 chars. Could you please provide me the list? I would like to give it a try. Thanks a lot.
@knc1: you are right indeed. I did some visual changes  |
There are a lot of FALSE reports of kindles using fionaXXXX (including the PW generating javascript page). If somebody changes their password, it always stores the new password as a salted MD5 hash which encodes all characters entered, not just the first 8 characters like the simple DES hash used for default root passwords.
It would ONLY have 4 hex digits IF you changed your password to use 4 hex digits.
I just downloaded the wordlist and it contains all possible fionaXXX and fionaXXXX passwords. It does not contain "mario" though, so you may want to add that to your list. No need for a new list. If you used a different list, download it from master index / tools index.
If you did not change your password, this is the first reported case of amazon CHANGING a password, or the first reported case of a kindle coming with a DIFFERENT password (not mario or fionaXXX).
If you can send me your shadow file, I can try cracking it when I have time.