Tag: Review

Recover PDF Password

Software review of Recover PDF Password by Eltima Software

Recover PDF Password

Ever run into a problem where you have a .PDF file that’s password protected, only you’ve forgotten the password?

I went on the hunt for the best PDF password recovery utilities for the Mac, and the resounding pull of the tide was to Recover PDF Password by Eltima Software.

The version reviewed here is Version 3.0, Build 3.0.40.

With a PDF file, it turns out there can be two passwords.  The owner password in Adobe Acrobat called the change permission password, which is used to inhibit changing the document, restrict printing, copying, and other related features.  The user password merely allows opening the file.  Recovery PDF Password can not only recover them both, but remove them as well, rending a neutered document; it can also remove a digital signature.

PDF passwords are not simple obfuscation, that would be easily reversible and insecure.  Instead, cracking the encryption involves walking the key space, a task that Recover PDF Password is capable of doing, even when the password contains Unicode characters, using multiple cores to accomplish the feat.

Given that the key space is actually quite enormous, and that users often pick weak passwords, Recover PDF Password can leverage this fact if you know a little bit about your password already. This is what makes Recover PDF Password rather clever —intelligently narrowing down the key space to only try passwords that are likely.

To start with, there’s a Dictionary attack, which will not only try a common list of words, numbers, or your own common password collection, but it will also perform a number of common heuristic checks against permutations that humans commonly do, such as altering upper and lowercase, reversing, replicating characters, dropping characters, adding characters, etc. This gets more bang for your buck out of common password lists. 

Here’s 62 thousand common passwords to get you started.

While trying a known dictionary is very quick, it doesn’t work against unique, inventive passwords.  To do that Recover PDF Password can also be made to use a brute-force attack.  Again, it has the ability to narrow down the key space to something much more manageable.  It does so by allowing you to specify a minimum and maximum password length, you can provide a wildcard template of what you suspect the password is, or you can conduct a completely exhaustive search.

It’s also possible to limit the characters to uniquely or a combination of lowercase, uppercase, digits, symbols, white space, or additional characters of your choosing.

Recover PDF Password provides a coarse estimate of how long the process will take, the elapsed time so far, and the passwords found. As walking the key space to discover a password can be fairly CPU intensive, this is often a task left to the background or when you’re not using your machine. This is why Eltima built a pause and resume feature in, so that you can put the process on hold, use the full power of your machine, and then resume without having to start all over again. Also, if it’s already discovered the password to a file, it doesn’t have to recompute it (unless you want it to), as it remembers the prior password for a file for you.

The user interface is fairly straight forward, and the online help adequately addresses any subtle questions that might surface. Not only can it recover the password, but it can be used to provide information about the .PDF file as well.

There are some limitations to be aware of, as of this version the software can only recover the password for Adobe .PDFs for version 9 using 256-bit encryption.  Additionally, it’s possible with some really exotic passwords to find a match, but not be able to physically enter it. (See Note #1.) It also will not support removing a Digital Certificate (a Digital ID) due to International Copyright Law.  (See Note #2.)  These conditions are rare, but worth knowing about.

It’s also important that user expectations be set up front about the timeliness of the brute-force task. Encryption isn’t supposed to be easy to crack, and it’s supposed to be prohibitively expensive to brute-force.

Crack Curve

Recover PDF Password will usually get a 6 character password in a fairly short period of time. However, a 9 character password results in an estimation of “more than a day.” The problem with that is, according to How Secure Is My Password, a somewhat trivial password of that length can take several days, and a complex choice of characters can bump that up over 80 years.  Another site showing tables of Password Recovery Speeds computes that even just mixed upper and lower case characters can take from a month to several millennia. Just single case alphabetics can run in months to years.

This explains why strong passwords are usually at least 12 characters long, contain multiple character classes, and abide by rules to increase password complexity. In a nutshell, if the password you’re trying to recover is too long, or too complex, Recover PDF Password will theoretically get it, but your patience will have long run thin, your hardware’s mean time to failure will come upon you, or you’ll expire yourself before it’s recovered. This is the value of a strong password.

The solution to that problem is clusters of machines working together on the problem, a tactic well-funded governments employ. Perhaps with cloud services and ever faster and more parallel machines becoming affordable, the reach of the average user will extend to cover slightly larger passwords. Eltima tells me they are looking at solutions that allow multi-machine cooperation on a network, and are giving consideration and thought to cloud servcies.

All this, of course, is thwarted by people using much longer and secure passwords today.

As such, being realistic about the matter, Recover PDF Password was able to recover short, simple passwords in a reasonable time, although the real-world passwords I use still require too much computational time to brute-force a recovery. But that’s where the software seems to be appropriately named, especially if you don’t think of it as a password cracker, but a recovery tool. See, most people have a general idea about what the password may be, but have forgotten the specifics of what variation that might have been used. Recover PDF Password’s dictionary and template modes allow for quick experimentation, and using that, I was able to recover a 9 character password because I had some idea about what it looked like and could cooperate in the reduction of the key space process. Recover PDF Password did the grunt work of trying all the possibilities.

In that respect, Recover PDF Password is quite a useful tool, but your mileage may vary based on password length, password strength, and your own recall.

I’ll also point out that when I tested this version with OS X Lion (v10.7.4), Recover PDF Password recommended I install Growl (which comes with the software). The only problem is that it is an older version than Growl available on the AppStore. Eltima has said they are going to reach out and become partners to restore the option with Lion; hopefully this happens before Mountain Lion his the App Store.

While Recover PDF Password is quite capable, there are a number of features I’d like to see in future versions, which I think would enhance the software immensely:

  • Some additional dictionary heuristics, such as Leet substitutions — where ‘apple core’ is spelled as ‘@9913 (023’.
  • The handling of a batch of PDFs at once — walk the key space once, check for all.
  • Displaying passwords as found.
  • Improved progress indicators: how many keys there are, how many it’s tried so far, the velocity of guesses per second.
  • Provide realistic estimates, based on the average velocity, for the coverage of 50% and 100% of key space.
  • Provide hints about how to reduce the runtime through stricter settings.
  • Provide a Regular Expression-like syntax for far more complicated password templates.
  • The ability to “nice” the guessing task — so that it always keeps humming away, but at a lower priority, rather then full-on or full-off.
  • Allow a full quit of the application and to resume later where left off (adding more PDFs as well).
  • Allow the user to enlist a cloud service — it pushes the hashes up and a whole slew machines beat on them.
  • Where practical, build either a pre-computed hash table for quick look up, or grow an online comprehensive dictionary of new passwords to try.
  • Provide realistic estimations before kicking off the job, thus allowing the user to tweak parameters and see the impact.
  • Allow one to pause the job and refine the key space further — one might remember something more about the password and not want to start all over.
  • Utilize the full power of multiple threads, multiple CPUs, the GPU, and if available other machines on the network — a generous license would do wonders for this software.

Quite a number of these suggestions resonated with Eltima Software, and I look forward to seeing more good things from them in the future. 

Uninstalling Intego Software

I’d rather eat an orange then brush my teeth with peppermint toothpaste than deal with cleaning up my system after using Intego’s software. If anything can bring the Windows reboot experience, coupled with the leaving of software cruft, to the Mac platform, this software does it in my opinion. Here’s how I finally got rid of it all. I hope.

I recently purchased a Mac bundle with software and it included software from Intego, consisting of the Personal Antispam and Personal Backup applications. I installed them, and from that point forward it was an experience I’ve regretted and have been trying to undo. Only now do I think I’ve made some progress toward that goal.

Frankly, I didn’t get what the backup software did for me over many of the free solutions out there, and while the personal antispam look intriguing, it was intrusive as well and I decided to fall back to Apple’s spam filter included in Mail.

Even if a product doesn’t make it into my main line of recommendations, I often will keep it around in the event I suddenly have use for it. This, for example, is how TypeIt4Me eventually won me over.

Intego went out of their way to annoy me straight from the start. How so? Every time I went to install a package from them, they felt the need to do what appeared to be a gratuitous reboot. It was like being on frickin’ Windows. And they had to install their own update manager, which had to take a glory spot in the menu bar. And it had to do updates, which required even more reboots. I was done with them at that point, but don’t even get me started on the subscription scheme that rode on top of the atrocity.

So I wrote to them asking them how to uninstall their software. Here’s the reply I got:

Proper removal of the software package requires using the Installer package located in your software bundle or disc. If you have manually attempted to remove the software, you will need to first, reinstall the software again, then use the same Installer package to properly remove the applications.

If you need to, you can re-download the installer for Internet Security Barrier X6 using the link below:

http://www.integodownload.com/en/isbx6.html

Open the installer and select to uninstall all software. Restart your computer.

Great, another reboot. Lucky for me, I hadn’t tried to go off on my own path, plus I had the original installation utility. I tried it, and it appeared to work.

Notice I said appeared?

One week later, LittleSnitch pops up and reports my system is spontaneously trying to access Intego’s update service for the very set of applications that, for all evidence I could tell, I removed and forgot about. Apparently, no so.

LittleSnitch also reveals it’s TaskManagerDaemon who’s trying to deal with Intego’s NetUpdate buried in /Library/Intego. Thank you LittleSnitch, curse you Intego.

Intego leaves cruft. Running cruft. Seems this isn’t new of them, according to Apple archives.

Part of the Mac culture is being a good citizen. In my opinion, I feel they aren’t.

After uninstalling the software in exactly the manner they prescribe, enter this this command at your terminal:
sudo find / -name Intego -print

I suspect you’ll develop a similar facial tick as it starts returning output after scanning your disk.

Go grab a root shell, you’re gonna wanna also wipe out:

  • /Library/Intego and everything below it.
  • /Library/Application Support/Intego and everything below it.
  • /Library/Preferences/Intego and everything below it.
  • /Users/wls/Library/Application Support/Intego and everything below it.

Oh, and you’ll want to Reboot as well.

…it’s not like I had other applications up or was doing anything important.

After the reboot, you’ll notice tons of console messages from launchd. Now you need to do this.
$ launchctl
launchd% remove com.intego.task.manager.notifier
launchd% remove com.intego.netupdate.agent
launchd% exit

And, you’ll need to remove some .plist files:
$ sudo rm -v /Library/LaunchAgents/*intego*
$ sudo rm -v /Library/LaunchDaemons/*intego*

And preferences, frameworks, keychains, and widgets:
$ sudo rm -vrf /Library/PreferencePanes/NetUpdate.prefPane
$ sudo rm -vrf /Library/Frameworks/IntegoiCalFramework.framework/
$ sudo rm -v /Library/Keychains/Intego.keychain
$ sudo rm -vrf /Library/Widgets/Intego\ Status.wdgt/

Reboot again.

UPDATE (12-Dec-2010): I’ve been in contact with Intego Support, support@intego.com, and they were kind enough to provide this extra information:

If there is anything left on your computer, you can remove it manually.

Can you please go into the following areas on the computer and delete any traces of Intego or VirusBarrier:

/Macintosh HD/Library/Intego
/Macintosh HD/Library/LaunchDaemons
/Macintosh HD/Library/LaunchAgents
/Macintosh HD/Applications
/Macintosh HD/Library/Preferences
/Macintosh HD/Library/Logs
/Macintosh HD/Library/Receipts
/Macintosh HD/Library/Startupitems
/Macintosh HD/Library/Widgets

Home Folder:

~/Library/Application Support
~/Library/Preferences

They were right, there’s logs, too.
$ sudo rm -rf /Library/Logs/NetUpdate/

Review: Walt gives Intego software installation TWO thumbs down. The reasons are obvious.

Connecting Models and Photographers… why so hard?

There are numerous sites that proclaim to connect models and photographers, however based on the design and business models I’ve seen, I don’t think it can work in present form. Here’s why.

As a photographer that photographs models, there’s two primary goals that any website that tries to connect models and photographers should aim for:
Model: Leah M. - Image Copyrighted by Walt Stoneburner

1. Assisting a photographer in finding the right model.

2. Assisting the client in finding the right photographer.

All else is peripheral.

The idea is that if you’re a model looking for work, you post your portfolio online and photographers approach you with gigs. Conversely, if you’re a photographer, you post your portfolio and jobs start coming out of the wood work. The reality is that few sites can deliver on the promise adequately, not to a fault of the site’s objective, but due to design, business model complexities, or subtleties pertaining to the problem of brokering.

Naturally, for any such site to work you’re going to need a critical mass of both kinds of users just to have a wide enough selection to make this happen. As such, it’s important not to alienate users — something that is very easy to do with bad design or practice. It’s not enough that a site be free.

The closest site that I’ve come across that seems to have the right idea is www.ModelMayhem.com. It’s search capability is right on target. You tell it that you are looking for models in your local area that are some number of miles from your zipcode, that are between the ages of 18-24, female, 5’2″ – 5’7″, olive skin, with shoulder length black hair, green eyes, and poof — out pops a number of candidates.

This is the way it should work. You tell the criteria about what you need, and it finds people with those attributes.

The problem is the interface is klunky, the portfolio space limited, the navigation is horribly disorganized, and pretty much anything other than models is left wanting. Yet it’s still usable.

I wish it had a way to describe the kinds of services photographers offered and made them in a searchable fashion as well. Oh well, at least finding models isn’t problematic.

Such locator services are not a social network, nor are they a dating service. They’re supposed to be resources that connect professional with professional, with the added bonus of having a reasonable idea of what you’re getting. It frustrates me when a site is designed around chit-chat and messaging. Simply put let one professional find another, preview their work, and then get in contact with them by email; don’t obscure things. A site that works gets traffic, it doesn’t need fudging to get visitors.

Conversely, I just deleted my account over at www.aMuseBook.com, a web site that professes to do the same thing: connect models and photographers. I’d argue not only that it doesn’t, but that it physically can’t in my personal opinion — it’s a business model problem gone awry.

While better organized, and certainly much prettier, it’s search capabilities are downright awful. The best geographical resolution is state-level. So, if you’re looking for a model in Texas, that’s all of Texas. Additionally, providing search criteria for attributes just isn’t possible, which means locating a specific model by looks isn’t doable. And if you can’t find candidates, you aren’t going to be hiring.

Here’s another bad design choice that just seems obvious. If you want to find a model, you typically are looking for an age bracket, yes? Well, the site doesn’t let you search by age, instead you have to search by a specific birthday, which is stupid. Oh, and that’s a Day – Month – Year birthday at that. Even searching by year alone isn’t helpful, because simply year subtraction doesn’t give age.

Now while aMuseBook does give you more space to store your photos, it unlocks features using a point system. You gain points by commenting on people’s pictures and telling your friends to join. What becomes transparent very quickly is that the site is not structured to make contacts, but to get you to churn through pages so that Google Ads get thrown in your face generating an alternate revenue stream. I quickly got tired of being told in every email I have to “use” the site and it will ‘work’ for me.

Hogwash. If I can’t locate a model or post a comprehensive portfolio, then neither I, nor the models, are getting any serious value out of the site.

Adding insult to injury, the site gives you the ability to provide URLs to your own site; this sounds good at first, until you realize that many models and photographers keep their photos on Flickr. Why? Because Flickr is great for managing photos. But what does aMuseBook do for those sites? It blocks them out, showing up as www.*****.com, and when I questioned the site admin about it, I got back a response stating they didn’t want their site for depositing competitor URLs and not another portfolio site.

Wait a second. The service is there to help me find people by showing them my portfolio but they don’t want me to show them my portfolio if it’s elsewhere? Plus I can’t post my portfolio unless I leave comments that I wouldn’t have otherwise. That’s stacking the deck and gives unrealistic feedback. And when points are rewarded for clicking on ads, I’m pretty sure that’s against Google’s terms of service for AdSense.

If people are churning pages leaving “Nice smile” comments, how is one to know which comments are real (and therefore useful) versus people just trying to collect points? The information itself becomes devalued. Thus the business structure and the design alienates users in the short term, while the lack of utility alienates them in the long term. It can’t be viable.

And that’s why I deleted my account over there: It wasn’t usable or productive.

No wonder it’s so hard for models and photographers to get connected. I wish there were a simple directory that focused on doing one thing and one thing well, connecting professionals. It’s a hard problem, but the person that cracks that nut can steal a whole lot of business from all these other sites without trying too hard.

Fundamentally, the problem is that a brokering agent has to provide and organize information. Limiting it, not being able to search it, or failing to have a positive user experience drives away the very assets that are needed to make the site work. This appears to be a case where a well simple organized directory could be a winner-take-all.


UPDATE: I have found an awesome site for models, photographers, and makeup artists. It’s call Miss Online and it allows unlimited photo uploads with no point limitation schemes. It also includes discussions, groups, blogs, and email. The site is very active and quite attractive to use; advertising is at a minimum, and you aren’t coerced into clicking through tons of pages. Plus, and here’s the real proof: as a photographer I’ve had more exchanges with models with this one site than all the other sites combined. It does get you connected.