Re: [Full-Disclosure] Use of Brutus

From: Harlan Carvey (keydet89_at_yahoo.com)
Date: 05/05/04

  • Next message: Tim: "Re: [Full-Disclosure] UnixWare 7.1.3 Open UNIX 8.0.0 UnixWare 7.1.1 : apache multiple vulnerabilities, upgraded to apache-1.3.29"
    To: Full-Disclosure@lists.netsys.com
    Date: Wed, 5 May 2004 07:39:41 -0700 (PDT)
    
    

    Chris,

    Just out of curiosity, what did the author say when
    you contacted him about this issue?

    --- Chris Sharp <chrisgsharp@yahoo.com> wrote:
    > Hi all,
    >
    > I've been trying for some time now to use Brutus
    > (BrutusA2.exe) to help with an internal review of
    > the security of the user passwords for an
    > application. I'm having some trouble getting Brutus
    > to work with form-based authentication and am hoping
    > to find some additional information on how I can
    > configure the .bad file. Currently I'm getting
    > false-positive results for the user ID's and
    > Passwords being used. Any help is appreciated.
    >
    > Thanks,
    >
    > Chris S.
    >
    >
    > ---------------------------------
    > Do you Yahoo!?
    > Win a $20,000 Career Makeover at Yahoo! HotJobs

    _______________________________________________
    Full-Disclosure - We believe in it.
    Charter: http://lists.netsys.com/full-disclosure-charter.html


  • Next message: Tim: "Re: [Full-Disclosure] UnixWare 7.1.3 Open UNIX 8.0.0 UnixWare 7.1.1 : apache multiple vulnerabilities, upgraded to apache-1.3.29"