lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
From: cseagle at redshift.com (Chris Eagle)
Subject: Re: new openssh exploit in the wild! *isFAKE AS SH@!*

> Probably a scriptkiddie or some random idiot. The fun part was
> it came up totally different offsets then i mean TOTALLY different
> each time you ran it and if you gave it a offset it would "work"
> no matter what. For those people who ran it.. change all your 
> passwords. :)
> 
> /Adam

That is because all the "offset" calculator does is call rand()

Chris

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ