Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Network Solutions Crypt-PW Authentication-Scheme vulnerability

From: Barney Wolff <barney () databus com>
Date: Sun, 10 Jun 2001 22:19:38 -0400
Aside from using rand, which ain't worth much, perhaps it would
be better to actually supply 64 chars for what's supposed to be
a 64-byte array.  You might even copy the "real" base64 encoding
array, which is (A..Z,a..z,0..9,+,/).
Barney Wolff

On Fri, Jun 08, 2001 at 04:27:36PM -0700, Tyler Walden wrote:

  local(@itoa64) = ( 0 .. 9, a .. z, A .. Z ); # 0 .. 63   # to64
Previous By Date Next
Previous By Thread Next

Current thread: