 |
 | Home | Contact Us | FAQ | Search & Site Map | Link to Us |
 | Sign In | Join | Other 45 Sites in Network |
MS Access Forum / General 1 / December 2005Database Password
I have some code which uses the now unsupported "ChrB" function. The code worked in A97 but does not with A2k3. Can anyone tell me what the following arguments equate to? Many thanks. ChrB(19) ChrB(40) ChrB(54) ChrB(55) ChrB(68) ChrB(84) ChrB(93) ChrB(94) ChrB(96) ChrB(123) ChrB(134) ChrB(138) ChrB(148) ChrB(156) ChrB(182) ChrB(198) ChrB(230) ChrB(236) ChrB(251) ChrB(250) > I have some code which uses the now unsupported "ChrB" function. The code > worked in A97 but does not with A2k3. Can anyone tell me what the following [quoted text clipped - 20 lines] > ChrB(251) > ChrB(250) ChrB(X) simply returns a one byte string representation of X. It may be difficult to print or see. Chr(X) returns a two byte unicode representation of X which is easy to print or see. Since you are asking in a Password thread I'm guessing these one bytes are easier, better to use in some kind of byte comparison or operation, perhaps XOR in Western. There is not much point on operating on zeros as every other byte. If so, I'm guessing that just loading the string into a byte array would be easier, but I'm speculating here.  SignatureLyle Fairfield > ChrB(X) simply returns a one byte string representation of X. It may be > difficult to print or see. [quoted text clipped - 7 lines] > If so, I'm guessing that just loading the string into a byte array would > be easier, but I'm speculating here. Hi Lyle, thanks for your response. I'm right on the edge of my knowledge on this so thanks for your patience. Here's the full code (you're right about the XOR) - IIRC it originated from Micheal Kaplan (and I've probably spelt that wrong). It works in A97 but not in A2k3. It seems to fall over where the empty password array is set. Any help greatly appreciated. And before anyone jumps in with the rights and wrongs of password cracking, I have a genuine and legal use for a working version of this code. Public Function StPasswordOfStDatabase(stDatabase As String) As String Dim hFile As Integer Dim ich As Integer Dim stBuffer As String Dim rgbytRaw() As Byte Dim rgbytPassword() As Byte Dim rgbytNoPassword() As Byte ' Create the byte array with the 20 bytes that are present when there ' is no database password rgbytNoPassword = ChrB(134) & ChrB(251) & ChrB(236) & ChrB(55) & ChrB(93) & _ ChrB(68) & ChrB(156) & ChrB(250) & ChrB(198) & ChrB(94) & _ ChrB(40) & ChrB(230) & ChrB(19) & ChrB(182) & ChrB(138) & _ ChrB(96) & ChrB(84) & ChrB(148) & ChrB(123) & ChrB(54) ' Grab the 20 bytes from the real file whose password ' we are supposed to retrieve hFile = FreeFile Open stDatabase For Binary As #hFile Seek #hFile, 66 + 1 rgbytRaw = InputB(20, #hFile) Close #hFile ' Enough prep, lets get the password now. ReDim rgbytPassword(0 To 19) For ich = 0 To 19 rgbytPassword(ich) = rgbytRaw(ich) Xor rgbytNoPassword(ich) Next ich ' Add a trailing Null so one will always be found, even if the password is 20 ' characters. Then grab up to the first null we find and return the password stBuffer = StrConv(rgbytPassword, vbUnicode) & vbNullChar 'StPasswordOfStDatabase = Left$(stBuffer, InStr(1, stBuffer, vbNullChar, vbBinaryCompare) - 1) StPasswordOfStDatabase = stBuffer 'To reveal the password, type this into the debug window: ? StPasswordOfStDatabase("c:\foo.mdb") 'Where("c:\foo.mdb") is the path to and name of the db file End Function Well, Keith I think this can be done if one follows Michka's lead and reads between the bytes. But one must find a new key, a different way of iterating, and a trick that is applied to some bytes but not to others. Other than that, it's a cinch! I'm torn about publishing my adaptation of Michka's code (but for JET 4.0). I'm not a great admirer of Michka personally, but I am a great admirer of his Access. I know that he's very bright and he's very much in the know about who's doing what to whom. I'd bet 1000000 to 1 that he broke this a long time ago. So why did he publish the crack for 3.5 but not for 4.0? He says he did 3.5 to put the crack sellers out of business. Maybe it didn't work out and he found that his work had been used in a way he did not want it to be used. Maybe MS suggested he desist. Maybe something else. I don't know. Perhaps someone will point out a site or post where it's freely available which means I could forget about it and do that other thing ... what's it called now?... oh yeah! ... work! (Of course I've tested this on no one else's DB so I can't say that it works for sure). Well a root canal (same tooth, fourth try) goes in the morning. In the afternoon I'll be all sweetness and light and see if there has been any further wisdom posted on this topic. > Well a root canal (same tooth, fourth try) goes in the morning. In the > afternoon I'll be all sweetness and light and see if there has been any > further wisdom posted on this topic. Lyle, Hope the root canal went smoothly and with as little discomfort as possible. Larry It went awry and filled my mouth permanently with the taste and feel of ________. Fill in the blank! > It went awry and filled my mouth permanently with the taste and feel of > ________. Fill in the blank! Redmound. If you can read my mind then why do we both need to post things here? > If you can read my mind then why do we both need to post things here? Because you're Robert De Niro and I'm just some shmuck pretending to be an actor. rkc <rkc@rochester.yabba.dabba.do.rr.bomb> wrote in news:UHlof.30104 $XC4.5573@twister.nyroc.rr.com: > Because you're Robert De Niro .... He was great in Shane. SignatureLyle Fairfield > rkc <rkc@rochester.yabba.dabba.do.rr.bomb> wrote in news:UHlof.30104 > $XC4.5573@twister.nyroc.rr.com: [quoted text clipped - 3 lines] > > He was great in Shane. I liked him as Gabby Hayes. > > rkc <rkc@rochester.yabba.dabba.do.rr.bomb> wrote in news:UHlof.30104 > > $XC4.5573@twister.nyroc.rr.com: [quoted text clipped - 4 lines] > > I liked him as Gabby Hayes. If you guys don't behave I'll reply to this post and change the subject to: INVEST $6 AND MAKE THOUSANDS LEGALLY!!! then no one will bother looking at this thread :-). James A. Fortune ChrB is still supported in Access 2003. From the Help file: The Chr function in Microsoft Access always returns 2-byte characters. In previous versions of Microsoft Access, Chr(&H41) and ChrB(&H41) were equal, but in the current version of Microsoft Access, Chr(&H41) and ChrB(&H41) + ChrB(0) are equal. ?Chr(19) = (ChrB(19) & ChrB(0)) True SignatureDoug Steele, Microsoft Access MVP http://I.Am/DougSteele (no e-mails, please!) >I have some code which uses the now unsupported "ChrB" function. The code >worked in A97 but does not with A2k3. Can anyone tell me what the [quoted text clipped - 20 lines] > ChrB(251) > ChrB(250) > ChrB is still supported in Access 2003. From the Help file: > [quoted text clipped - 5 lines] > ?Chr(19) = (ChrB(19) & ChrB(0)) > True So it looks like my problem is that the blank database password string is different between 97 and 2k3, is that a reasonable assumption? As I stated in my reply to Lyle, this code works in A97. Keith. Or its location is different. Or the whole procedure has been changed. Or there are bad sunspots today. This !!!!!should be!!!! easy (with the example in front of us) but maybe it isn't. Regardless, I have qualms. I'd start on location. >> ChrB is still supported in Access 2003. From the Help file: >> [quoted text clipped - 9 lines] > different between 97 and 2k3, is that a reasonable assumption? As I > stated in my reply to Lyle, this code works in A97. Looks like you're talking about the code MichKa has at http://www.trigeminal.com/code/DatabasePassword.bas Note that that code is only for Jet 3.0/3.5 databases (i.e. Access 95 or Access 97) As MichKa says at http://www.trigeminal.com/codes.asp?ItemID=5#5, "the Jet 4.0 database password is not even close to this easy to crack" SignatureDoug Steele, Microsoft Access MVP http://I.Am/DougSteele (no e-mails, please!) > As MichKa says at http://www.trigeminal.com/codes.asp?ItemID=5#5, "the Jet > 4.0 database password is not even close to this easy to crack" Ah, thanks for that, I vaguely remember reading that ages ago but had forgotten about it. Regards, Keith. > As MichKa says at http://www.trigeminal.com/codes.asp?ItemID=5#5, "the Jet > 4.0 database password is not even close to this easy to crack" How close is not even close? Perhaps, Michka was crying wolf (maybe that's not the right expression) in order to discourage the casual hacker. >> As MichKa says at http://www.trigeminal.com/codes.asp?ItemID=5#5, "the >> Jet [quoted text clipped - 3 lines] > that's not the right expression) in order to discourage the casual > hacker. Don't know. Since I never use database passwords, I've never bothered checking. OTOH, since he gave the code to retrieve 3.0/3.5 passwords, if the 4.0 passwords were that easy to retrieve, I see no reason why he wouldn't have given that code as well. SignatureDoug Steele, Microsoft Access MVP http://I.Am/DougSteele (no e-mails, please!) >>> As MichKa says at http://www.trigeminal.com/codes.asp?ItemID=5#5, "the >>> Jet [quoted text clipped - 9 lines] > passwords were that easy to retrieve, I see no reason why he wouldn't have > given that code as well. It's that easy. (I THINK!) I've only just mucked about since the first post in this thread and I've been out a bit and busy a bit but I can recover my passwords. Can I recover others? Don't know. I'm assuming that if I can do it, Michka can do it. I think he wanted to discourage us from looking. That's fair. Maybe I should have shut up too. SignatureLyle Fairfield My recollection was that someone said that it wasn't _quite_ as easy to retrieve the password in Jet 4 because it is stored differently. But, clearly, it still CAN be retrieved, as witness the many inexpensive "password recovery packages" available and your effort. Too, User and Group security can be broken, too, but it must be more effort and/or research, judging from the difference in cost of those "cracks". Larry Linson Microsoft Access MVP >>>> As MichKa says at http://www.trigeminal.com/codes.asp?ItemID=5#5, "the >>>> Jet [quoted text clipped - 16 lines] > I'm assuming that if I can do it, Michka can do it. I think he wanted to > discourage us from looking. That's fair. Maybe I should have shut up too. > My recollection was that someone said that it wasn't _quite_ as easy to > retrieve the password in Jet 4 because it is stored differently. [quoted text clipped - 3 lines] > security can be broken, too, but it must be more effort and/or research, > judging from the difference in cost of those "cracks". I'd agree about the "wasn't_quite_ as easy". But Michka says: (http://www.trigeminal.com/lang/1033/codes.asp?ItemID=5#5) "For what its worth, the Jet 4.0 database password is not even close to this easy to crack, and no, I will not help you crack it, so don't ask." I charge zero to get the password for a JET 4.0 db, provided that I can be assured that everything is legal and ethical. How can one do that? I have no idea. SignatureLyle Fairfield |
Reply to this Message |
 Sign In
 Join
 My Latest Posts My Monitored Threads My Blog My Photo Gallery My Profile My Homepage Start New Thread Enable EMail Alerts Rate this Thread
|
©2008 Advenet LLC Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.