Ophcrack legitimate?

[captaincranky]

Just for Argument's Sake...(We're Related You Know)

Consider this; my hip, rather up to date grandfather died. The old guy was even computer savvy. But, he didn't leave the passwords to his machines. How else might we, or our computer tech gain access to the machine? This might be necessary for settling his financial affairs, or perhaps just to retrieve family photos.

Law enforcement might need something like this to search a drug dealer's machine, or perhaps search for evidence in a child pornography case. (Like they don't already have it, right)!

So. why is it so often assumed that a program such as "Ophcrack" will automatically be used to evil intent? Again people make choices, not programs.

People with no possibility of having intellectual property of their our will argue to the death that downloading is legal. That is a whole lot more cut and dried than this. No, that's stealing, period.

This is silly to some extent, at least with respect to a home environment. Are you going to let someone into your home, and run a password cracker without impediment or intervention? Suggesting that something like this program shouldn't exist, is in part shirking individual responsibity for the physical security of your machine.

 

[DelJo63]

Are you going to let someone into your home, and run a password cracker without impediment or intervention?

not all systems are anchored to the desk at home and more and more laptops are replacing workstations.

if you have nothing of value the whole discussion is moot, but for systems with business and
financial data on laptops which travel the issue is paramount -- protecting privacy, like security, is a layered proposition.

encryption of files and prevention of getting to password ensures that a stolen
laptop becomes a BRICK. dismantling it to get at the HD is possible but fruitless.
booting from CD to copy files will do no better.

Consider this; my hip, rather up to date grandfather died. The old guy was even computer savvy. But, he didn't leave the passwords to his machines. How else might we, or our computer tech gain access to the machine? This might be necessary for settling his financial affairs, or perhaps just to retrieve family photos.

Good point -- and we need to make plans for such events by document these issues for the executor --
just like we document the name and account numbers for our financial accounts.

I too am glad others have voiced their opinons and doubt that anyone has had
any second thoughts on the subject -- so PEACE to all.

 

[Tedster]

The source site is legit, the software on there is legit, the application or use of the program may or may not be. This is just like DVD cracking programs. As long as you own the DVD, it is legal. If you don't it's illegal. Cracking into your own computer if you lost or forgot the password, is legit. Breaking into someone else's without their permission is not.

 

[navyfalcon]

People be reasonable. The program is taught in universities to program administers to check the security of the network and the workstations. So is rainbowcrack, cain & able, and other intrusion software. They also teach how to prevent these programs from hacking into the system. You may check several Universities. To be certified you need to know how to use these programs and how to prevent the intrusion.
falcon

 

[LNCPapa]

Nice necro - but yes, you can learn all about this stuff from many classes including going through the CEH track.

 

[navyfalcon]

Salting passcodes prevents Ophcrack from cracking them
https://en.wikipedia.org/wiki/Salt_(cryptography)
A small amount of research will help administrators understand and be able to enlighten the readers.
-
Hope this helps
falcon