Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: Whitespace in passwords
From: "Stephen J. Smoogen" <smooge () gmail com>
Date: Mon, 19 Sep 2005 07:27:02 -0600

On 9/18/05, Craig Wright <cwright () bdosyd com au> wrote:
Hi

If you think than spaces make you safe...

Nothing makes you safe if you are using LANMAN passwords in your
system. Using spaces in 1way encrypted passwords helps a bit, but not
great. Using 1 time passwords may be best, but you have to either put
in a bit of hardware in place (Cryptocard, SecureID) or have a sheet
of phrases (OPIE). And none of these help if you are dealing with a
trojaned system (replacing SSH, telnet, keyboard, etc.)

-- 
Stephen J Smoogen.
CSIRT/Linux System Administrator

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault