On Friday 03 October 2003 16:09, Gideon N. Guillen wrote: > I believe l0pth crack is also using dictionary attacks. And knowing that > most users are just really using some common words such as family > members, pet names, "sex", "god", etc, I think you can crack those. Now > you only have to bother with some tech-savvy users who's using hard to > guess passwords, and I think most of 'em won't even mind changing > passwords anyway...
we're in the philippines. a lot of people use tagalog or visayan passwords. got to edit the dictionary. and then there are all those weird filipino names. mhychylle? or even bhoybhoy will not work with a dictionary :). it's something to try, certainly. but i'd have a second option, like sniffing passwords. and then some people will just have to have their passwords reset. that (resetting passwords) doesn't work well in an ISP setup though. the clients don't like it. but it could work OK in a corporate setup. tiger -- Gerald Timothy Quimpo gquimpo*hotmail.com tiger*sni*ph http://bopolissimus.sni.ph Public Key: "gpg --keyserver pgp.mit.edu --recv-keys 672F4C78" Children are natural mimics who act like their parents despite every effort to teach them good manners. -- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
