I spent a few minutes digging through this one (especially since it *looked* like one of those iffy legal situations)

Although I haven't de-fued this entirely, it certainly doesn't appear to be doing anything troublesome. It reads its own sourcecode, munges on it a bit, and prints a JAPH.

For instance, replacing the first two lines of code (one of which contains "/etc/passwd") with blank lines has no noticable effect on the output.

Like any other obfu, it could be doing something nasty behind the scenes (thats a risk of obfu..), but it isn't a simple password cracker like it appears on the surface. As always, understanding before running untrusted code is recommended. Using a special non-privileged user to execute obfued code is also a good idea.

-Blake