Re: Messenger/Hotmail passwords at risk

From: Pavel Kankovsky (peakat_private)
Date: Tue Jul 10 2001 - 01:41:19 PDT

Next message: Peter Gutmann: "Re: Windows MS-DOS Device Name DoS vulnerabilities"

Previous message: John Kristoff: "Re: Small TCP packets == very large overhead == DoS?"
In reply to: Jeffrey W. Baker: "Re: Messenger/Hotmail passwords at risk"
Next in thread: Gaurav Agarwal: "Re: Messenger/Hotmail passwords at risk"
Reply: Gaurav Agarwal: "Re: Messenger/Hotmail passwords at risk"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 9 Jul 2001, Jeffrey W. Baker wrote:

> Uh huh.  So you are saying that, given MD5(password), password may be
> recovered by brute force.  And this is new/interesting in what way?

The interesting thing is he can (allegedly) do it at 2.5e6 tries/second on
an affordable machine. Being able to exhaust all combinations of 8 digits
and lowercase letters within 2 weeks makes such an attack much more
practical.

--Pavel Kankovsky aka Peak  [ Boycott Microsoft--http://www.vcnet.com/bms ]
"Resistance is futile. Open your source code and prepare for assimilation."

Next message: Peter Gutmann: "Re: Windows MS-DOS Device Name DoS vulnerabilities"
Previous message: John Kristoff: "Re: Small TCP packets == very large overhead == DoS?"
In reply to: Jeffrey W. Baker: "Re: Messenger/Hotmail passwords at risk"
Next in thread: Gaurav Agarwal: "Re: Messenger/Hotmail passwords at risk"
Reply: Gaurav Agarwal: "Re: Messenger/Hotmail passwords at risk"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Jul 10 2001 - 07:13:40 PDT