lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <20070115141342.5812.qmail@securityfocus.com> Date: 15 Jan 2007 14:13:42 -0000 From: paulw@...software.com To: bugtraq@...urityfocus.com Subject: Oracle Passwords and OraBrute New Oracle Security Paper: How to secure Oracle passwords from rainbow tables and new password cracking patches. Also includes free audit tool called OraBrute to brute force SYS AS SYSDBA in order to check that it has been secured. Unfortunately by default it is not but can be secured by following this papers recommendations. http://www.ngssoftware.com/research/papers/oraclepasswords.pdf