RE: [NSE Script] MySQL Server Information

["Rob Nicholls" <robert () everythingeverything co uk>]

The "sa" account (often setup with a blank password because the setup file
for 2000 doesn't make much effort to stop you) is a default account used by
MS SQL, not MySQL, so any checks would go into an MSSQL script (Thomas has
already written a "Microsoft SQL Server information gathering script"). A
check for a blank password might be okay (and possibly the password "sa"?),
but nmap probably isn't the best place to test for passwords, and I suspect
people would like to avoid accidentally locking out accounts or potentially
cause a denial of service (for any service).

A bit off-topic, but if you're interested in checking a service for "easy"
passwords, you might want to try a dedicated tool such as hydra:
http://freeworld.thc.org/thc-hydra/


Rob

-----Original Message-----
From: sawall [mailto:sawall () gmail com] 
Sent: 18 December 2007 17:32
To: nmap-dev () insecure org
Subject: Re: [NSE Script] MySQL Server Information

Great work guys.  This script is awesome.  The one thing I am trying to test
for is a blank (or easy) password for the sa account.  How hard do you think
that would be to build in?

I'm at a slight disadvantage as I just started trying to learn about Lua
today, so it might take me a bit before I'm off and running.

Thanks,
chris



_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org