Bugtraq mailing list archives

Re: passwd hashing algorithm

From: jna () concorde com (John Adams)
Date: Mon, 17 Apr 1995 15:47:07 -0400


Yes,Yes, a sniffer could be installed, but this assumes your attacker
has physical access to your site. A bigger worry is sniffing on 
any of the networks before you.

If you are working in an environment that needs a higher level of
security than just passwords, run S/Key, or go for the overly expensive
(but easier to use) solution of SecureID. 

-john

Current thread:

Re: passwd hashing algorithm, (continued)
- - - Re: passwd hashing algorithm John F. Haugh II (Apr 21)
    - Re: passwd hashing algorithm Timothy Newsham (Apr 21)
    - Re: passwd hashing algorithm John F. Haugh II (Apr 23)
    - RE: virus Erich W. Gunther (Apr 23)
    - Re: passwd hashing algorithm David Miller (Apr 19)
    - Re: passwd hashing algorithm David A. Wagner (Apr 19)
    - Re: passwd hashing algorithm John F. Haugh II (Apr 21)
    - AntiFlash talkd Richard Allen (Apr 19)
    - Re: AntiFlash talkd James M. Golovich (Apr 19)
    - Password Storage as Environment Variable Bill Bradley (Apr 19)
- Re: passwd hashing algorithm John Adams (Apr 17)
- Re: passwd hashing algorithm Paul C Leyland (Apr 19)
- Re: passwd hashing algorithm Paul C Leyland (Apr 20)
  - Re: passwd hashing algorithm John F. Haugh II (Apr 23)
  - Re: passwd hashing algorithm Marek Michalkiewicz (Apr 24)
- Re: passwd hashing algorithm Paul C Leyland (Apr 21)
- Re: passwd hashing algorithm Pete Hartman (Apr 24)