Penetration Testing mailing list archives
RE: Brutus issue
From: "Isaac Van Name" <ivanname () southerlandsleep com>
Date: Thu, 2 Nov 2006 13:05:11 -0600
Thank you to all of the people who have corrected me about Base 64... I did the necessary research to catch up with everyone else on that one. As for my previous post, I apologize for the degrading tone that my reply had. I would also encourage you to absorb the included documentation with your tools and do lots of independent testing and research with them. I would feel more comfortable as a potential client if I felt like you had a strong grasp of the tasks you set out to perform on my network. Just my two cents from that standpoint... Isaac Van Name Systems Administrator "What good would you do with an ignorant employee? Ignorance is grounds for dismissal..." - Mario Spinthiras Open Source developing at its finest: "Written in vim, W3C valid and UTF-8 encoded, for her pleasure." Disclaimer: This email is intended only to be used to feign intellectual mastery of a subject or superhuman command of the English language, when profanity is involved. By reading this email, you are agreeing to cease all correspondence with the sender upon realizing your own ignorance, and furthermore to refrain from taking legal action against said sender when your compounding ignorance crushes your inadequate self-esteem. Have a nice day. Original> -----Original Message----- Original> From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] Original> On Behalf Of Tonnerre Lombard Original> Sent: Thursday, November 02, 2006 2:03 AM Original> To: Isaac Van Name Original> Cc: 'Juan B'; pen-test () securityfocus com Original> Subject: RE: Brutus issue Original> Original> Salut, Original> Original> On Wed, 2006-11-01 at 10:46 -0600, Isaac Van Name wrote: Original> > Well, Base 64 is an encryption method... Original> Original> No, base64 is an encoding variant which reduces the number of bits per Original> byte transferred to 6. It was used to prevent stuff from being broken by Original> being posted to Usenet. Original> Original> There is no key and no randomization, you just plainly shove off two Original> bits into the next byte and pad up with =. Thus, no encryption at all. Original> Original> Tonnerre Original> -- Original> SyGroup GmbH Original> Tonnerre Lombard Original> Original> Lösungen mit System Original> Tel:+41 61 333 80 33 Röschenzerstrasse 9 Original> Fax:+41 61 383 14 67 4153 Reinach BL Original> Web:www.sygroup.ch tonnerre.lombard () sygroup ch ------------------------------------------------------------------------ This List Sponsored by: Cenzic Need to secure your web apps? Cenzic Hailstorm finds vulnerabilities fast. Click the link to buy it, try it or download Hailstorm for FREE. http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW ------------------------------------------------------------------------
Current thread:
- Re: Brutus issue joe (Nov 01)
- <Possible follow-ups>
- RE: Brutus issue Isaac Van Name (Nov 01)
- RE: Brutus issue Tonnerre Lombard (Nov 02)
- RE: Brutus issue Isaac Van Name (Nov 02)
- RE: Brutus issue Tonnerre Lombard (Nov 02)
- Re: Brutus issue Pieter Danhieux (Nov 01)
- Re: Brutus issue Mister Dookie (Nov 01)
- Re: RE: Brutus issue rumple (Nov 02)