[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] Flog 1.1.2 Remote Admin Password Disclosure
- To: full-disclosure@xxxxxxxxxxxxxxxxx
- Subject: Re: [Full-disclosure] Flog 1.1.2 Remote Admin Password Disclosure
- From: endrazine <endrazine@xxxxxxxxx>
- Date: Mon, 08 Jan 2007 19:04:40 +0100
typos :
endrazine a écrit :
> Here again, I agree. Now, if one needs to exhaustively try every
> possible 32b hashes with the largest possible charset (or even bigger hashes
> with a smaller - like those alphanumerical keys you just mentionned), to
> break a password hash, the it's not a "*BIG*" security issue like
> mentionned earlier imho.
>
s/hashes/passwords/ indeed
Cheers,
endrazine-
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/