[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] 0day Full disclosure: American Express
- To: "'Rack911 Security Lists'" <lists@xxxxxxxxxxx>, "full-disclosure@xxxxxxxxxxxxxxxxx" <full-disclosure@xxxxxxxxxxxxxxxxx>
- Subject: Re: [Full-disclosure] 0day Full disclosure: American Express
- From: Michael Schmidt <mschmidt@xxxxxxxxxxxxx>
- Date: Mon, 10 Oct 2011 19:20:38 +0000
A lot of the banking industry uses lowercase only. Easier to type form a
telephone handset. Legacy system suckage.
From: full-disclosure-bounces@xxxxxxxxxxxxxxxxx
[mailto:full-disclosure-bounces@xxxxxxxxxxxxxxxxx] On Behalf Of Rack911
Security Lists
Sent: Monday, October 10, 2011 10:58 AM
To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] 0day Full disclosure: American Express
American express also utilizing case-insensitive password storing.
On 10/5/2011 11:55 PM, John Doe wrote:
http://qnrq.se/full-disclosure-american-express/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/