Home page logo
/

pen-test logo Penetration Testing mailing list archives

RE: Brutus issue
From: "Isaac Van Name" <ivanname () southerlandsleep com>
Date: Thu, 2 Nov 2006 13:05:11 -0600

Thank you to all of the people who have corrected me about Base 64... I did
the necessary research to catch up with everyone else on that one.  As for
my previous post, I apologize for the degrading tone that my reply had.  I
would also encourage you to absorb the included documentation with your
tools and do lots of independent testing and research with them.  I would
feel more comfortable as a potential client if I felt like you had a strong
grasp of the tasks you set out to perform on my network.  Just my two cents
from that standpoint... 


Isaac Van Name
Systems Administrator

"What good would you do with an ignorant employee? Ignorance is grounds for
dismissal..." - Mario Spinthiras
 
Open Source developing at its finest:
"Written in vim, W3C valid and UTF-8 encoded, for her pleasure."
 
Disclaimer:  This email is intended only to be used to feign intellectual
mastery of a subject or superhuman command of the English language, when
profanity is involved.  By reading this email, you are agreeing to cease all
correspondence with the sender upon realizing your own ignorance, and
furthermore to refrain from taking legal action against said sender when
your compounding ignorance crushes your inadequate self-esteem.  Have a nice
day.

Original> -----Original Message-----
Original> From: listbounce () securityfocus com
[mailto:listbounce () securityfocus com]
Original> On Behalf Of Tonnerre Lombard
Original> Sent: Thursday, November 02, 2006 2:03 AM
Original> To: Isaac Van Name
Original> Cc: 'Juan B'; pen-test () securityfocus com
Original> Subject: RE: Brutus issue
Original> 
Original> Salut,
Original> 
Original> On Wed, 2006-11-01 at 10:46 -0600, Isaac Van Name wrote:
Original> > Well, Base 64 is an encryption method...
Original> 
Original> No, base64 is an encoding variant which reduces the number of bits
per
Original> byte transferred to 6. It was used to prevent stuff from being
broken by
Original> being posted to Usenet.
Original> 
Original> There is no key and no randomization, you just plainly shove off
two
Original> bits into the next byte and pad up with =. Thus, no encryption at
all.
Original> 
Original>                               Tonnerre
Original> --
Original> SyGroup GmbH
Original> Tonnerre Lombard
Original> 
Original> Lösungen mit System
Original> Tel:+41 61 333 80 33    Röschenzerstrasse 9
Original> Fax:+41 61 383 14 67    4153 Reinach BL
Original> Web:www.sygroup.ch      tonnerre.lombard () sygroup ch


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]