[techtalk] Re: Using Crack 5.0

Kelly Lynn Martin kelly at poverty.bloomington.in.us
Sat Dec 4 13:20:04 EST 1999

On 4 Dec 1999 16:07:49 -0000, subb3 at attglobal.net said:

>Crack nor JR, tried anything on the application accounts. They tested
>only the user accounts. Is it because the encrypted password existed
>in the 2nd field? How does one test the integrity of the application

An account with an encrypted password like '!' or '*' cannot be logged 
into at all -- no password will hash to that.  Such an account poses
no integrity risk, at least not in the sense of password security.


techtalk at linuxchix.org   http://www.linuxchix.org

More information about the Techtalk mailing list