| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20040305154630.GA11912@SDF.LONESTAR.ORG> From: petard at freeshell.org (petard) Subject: Re: Multiple issues with Mac OS X AFP client On Fri, Mar 05, 2004 at 12:49:57AM +0100, Stefan Bethke wrote: > >SecureMac.com has a article on this if anyone is interested. > > Is that so? Google didn't seem to find much... Your google-fu must be weak. OP was correct about password storage, and google does indeed turn up articles about that on SecureMac.com. His assumption about password transmission being the same was mistaken, as you so handily pointed out. Anyway, here's the link to some general info: http://www.securemac.com/appletalk.php And here's the algorithm to deode stored passwords along with an implementation: http://www.securemac.com/data/macfspwd.c There's plenty more interesting info there, but you sound like you need the google practice, so I'll let you find it yourself. regards, petard -- If your message really might be confidential, download my PGP key here: http://petard.freeshell.org/petard.asc and encrypt it. Otherwise, save bandwidth and lose the disclaimer.
Powered by blists - more mailing lists