[techtalk] Re: Using Crack 5.0
Kelly Lynn Martin
kelly at poverty.bloomington.in.us
Sat Dec 4 13:20:04 EST 1999
On 4 Dec 1999 16:07:49 -0000, subb3 at attglobal.net said:
>Crack nor JR, tried anything on the application accounts. They tested
>only the user accounts. Is it because the encrypted password existed
>in the 2nd field? How does one test the integrity of the application
>accounts?
An account with an encrypted password like '!' or '*' cannot be logged
into at all -- no password will hash to that. Such an account poses
no integrity risk, at least not in the sense of password security.
Kelly
************
techtalk at linuxchix.org http://www.linuxchix.org
More information about the Techtalk
mailing list