Re: Network Solutions Crypt-PW Authentication-Scheme vulnerability

From: Barney Wolff (barneyat_private)
Date: Sun Jun 10 2001 - 19:19:38 PDT

Next message: Mathias Dybvik: "Re:XFree86-xfs-4.0.1-1 DoS"

Previous message: Wichert Akkerman: "Re: Network Solutions Crypt-PW Authentication-Scheme vulnerability"
In reply to: Tyler Walden: "Re: Network Solutions Crypt-PW Authentication-Scheme vulnerability"
Next in thread: Chris Adams: "Re: Network Solutions Crypt-PW Authentication-Scheme vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Aside from using rand, which ain't worth much, perhaps it would
be better to actually supply 64 chars for what's supposed to be
a 64-byte array.  You might even copy the "real" base64 encoding
array, which is (A..Z,a..z,0..9,+,/).
Barney Wolff

On Fri, Jun 08, 2001 at 04:27:36PM -0700, Tyler Walden wrote:
>   local(@itoa64) = ( 0 .. 9, a .. z, A .. Z ); # 0 .. 63   # to64

Next message: Mathias Dybvik: "Re:XFree86-xfs-4.0.1-1 DoS"
Previous message: Wichert Akkerman: "Re: Network Solutions Crypt-PW Authentication-Scheme vulnerability"
In reply to: Tyler Walden: "Re: Network Solutions Crypt-PW Authentication-Scheme vulnerability"
Next in thread: Chris Adams: "Re: Network Solutions Crypt-PW Authentication-Scheme vulnerability"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Jun 11 2001 - 10:22:37 PDT