+ Reply to Thread
Results 1 to 3 of 3

Thread: Testing issue

  1. September 25th, 2002 08:17 PM #1
    cerealbowl
    cerealbowl is offline
    Junior Member cerealbowl is an unknown quantity at this point
    Join Date
    Sep 2002
    Posts
    14

    Testing issue

    To begin i am new with Unix. My team leader asked me to do testing on our main unix cluster. Now when I do our outlined tests (one being a telnet test to find weak passwords) I find a match with user/name and password. So I tell him, and he doesnt believe me. So i attempt to login to show him how bloody smart I am LOL and it fails but the testing software says it is a match? Anyone have any ideas, i look bad and wanna know why this is happening.
    Reply With Quote Reply With Quote
  2. September 25th, 2002 08:25 PM #2
    DjM
    DjM is offline
    I'd rather be fishing DjM has a reputation beyond repute DjM has a reputation beyond repute DjM has a reputation beyond repute DjM has a reputation beyond repute DjM has a reputation beyond repute DjM has a reputation beyond repute DjM has a reputation beyond repute DjM has a reputation beyond repute DjM has a reputation beyond repute DjM has a reputation beyond repute DjM has a reputation beyond repute DjM's Avatar
    Join Date
    Aug 2001
    Location
    The Great White North
    Posts
    1,867
    Not much detail here, but, if the 'weak' password you found belongs to 'Root' you will not be able to telnet to the box as root. (most *nix systems reject that out right). If it is Root, go to the console and try the password from there.


    Cheers:
    DjM
    Reply With Quote Reply With Quote
  3. September 25th, 2002 08:44 PM #3
    nebulus200
    nebulus200 is offline
    Jaded Network Admin nebulus200 has a reputation beyond repute nebulus200 has a reputation beyond repute nebulus200 has a reputation beyond repute nebulus200 has a reputation beyond repute nebulus200 has a reputation beyond repute nebulus200 has a reputation beyond repute nebulus200 has a reputation beyond repute nebulus200 has a reputation beyond repute nebulus200 has a reputation beyond repute nebulus200 has a reputation beyond repute nebulus200 has a reputation beyond repute nebulus200's Avatar
    Join Date
    Jun 2002
    Posts
    1,356
    It would be very helpful if you would say what programs you are using to 'telnet test to find weak passwords', this would at least help us understand exactly what you are doing.

    With that being said, my question for you is, why are you using telnet to test usernames/passwords and not running the tests locally with a password grinder ? It would be infinitely faster and do a thorough job?

    Nebulus
    There is only one constant, one universal, it is the only real truth: causality. Action. Reaction. Cause and effect...There is no escape from it, we are forever slaves to it. Our only hope, our only peace is to understand it, to understand the 'why'. 'Why' is what separates us from them, you from me. 'Why' is the only real social power, without it you are powerless.

    (Merovingian - Matrix Reloaded)
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts

Forum Rules

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides