November 20th, 2001 07:59 AM
My school has a SonicWall firewall. It doesn't worth a thing.
It even kept me out from http://www.linux.fr
Anyway. After messing around, I found out that it can be crashed if you provide it w/ a long enough username or password.
As I kept looking, I was able to download a file called securelogin.cab
When I opened it, I found myself with 4 *.class files. Would anyone know if SonicWall stores the password hashes somewhere around there?
-Friends come and go. Enemies accumulate-
November 20th, 2001 11:02 PM
first of all, in case you didn't know *.class files are compiled versions of JAVA source. So, they would be very difficult to decypher.
I'm not too sure about the program (i've never used it ), but the chances are the password is not in those files. Although if youcould decompile the files and look at the source code, you might figure out the encryption method for the password and where it is really stored.