Bugtraq: Re: HP Secure Web Console

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: HP Secure Web Console

From: fkr050c () EMAIL MOT COM (Keith Rice)
Date: Thu, 2 Dec 1999 15:36:18 -0600


Alec Kosky wrote:


On 01-Dec-99 Jon Mitchell wrote:

However we discovered that
it does not appear to be any sort of MD5 encryption scheme (although I'm
not an encryption expert), but in actuality what we've deemed Secret
Decoder Ring encryption.  The letters are one to one with another letter,
and even worse, in order as well.

Here's an example of two sets of letters:

You type:  abcd
Transmits: VUTS

You type:  ABCD
Transmits: vuts


ROT13 encoding - like the caesar cipher (it may be the caesar cipher?). Take
your character and rotate 13 characters.

--Alec--


It's vaguely similar to the ROT13 encoding scheme but it's not ROT13. If it
were, then "abcd" would be transmitted as "nopq".

It looks like it reverses the alphabet and then rotate the resulting alphabet
until it starts with the character "v". It then maps the letters to its
corresponding character and changes the case.

I wonder how it handles numeric characters and punctuation...

Later,
Keith

P.S. Don't forget to drink your Ovaltine!

By Date By Thread

Current thread:

HP Secure Web Console Jon Mitchell (Dec 01)
- Re: HP Secure Web Console Alec Kosky (Dec 01)
  - Re: HP Secure Web Console Keith Rice (Dec 02)
    - Re: HP Secure Web Console GNSS Research Division (Dec 03)
    - Re: HP Secure Web Console GNSS Research Division (Dec 03)
    - UnixWare gain root with non-su/gid binaries Brock Tellier (Dec 03)
    - UnixWare read/modify users' mail Brock Tellier (Dec 03)
    - UnixWare and the dacread permission Brock Tellier (Dec 03)