Vulnerability Development mailing list archives

Re: UserID and hashed password for Lotus Domino

From: "Valgasu" <valgasu () securiteinfo com>
Date: Fri, 18 Oct 2002 18:54:37 +0200

Hi,

Is there any way to obtain the password from the
UserID, or to crack and obtain the password from its
hash?
(I read it was released a tool named "sesame"... any
clue? here for more info about it:
http://online.securityfocus.com/news/66 )

 
For the UserID file you can use ID Password Recovery
(http://www.cqure.net/tools04.html) and for the HTTP hash
Domino Hash Breaker (http://www.securiteinfo.com/download/dhb.zip)
 
This 2 tools work only in dictionary attack.
 
 Eric

Current thread:

Re: UserID and hashed password for Lotus Domino, (continued)
- Re: UserID and hashed password for Lotus Domino Nicolas Gregoire (Oct 18)
  - Re[2]: UserID and hashed password for Lotus Domino Philip Storry (Oct 18)
- Re: UserID and hashed password for Lotus Domino Philip Storry (Oct 18)
  - Re: UserID and hashed password for Lotus Domino gpedone77 (Oct 20)
  - Message not available
    - Re[2]: UserID and hashed password for Lotus Domino Philip Storry (Oct 21)
    - Re: UserID and hashed password for Lotus Domino gpedone77 (Oct 23)
- Re: UserID and hashed password for Lotus Domino HalbaSus (Oct 20)
  - Re: UserID and hashed password for Lotus Domino gpedone77 (Oct 20)
    - Re[2]: UserID and hashed password for Lotus Domino Philip Storry (Oct 21)
  - Re[2]: UserID and hashed password for Lotus Domino Philip Storry (Oct 21)
- Re: UserID and hashed password for Lotus Domino Valgasu (Oct 18)
  - Re: UserID and hashed password for Lotus Domino gpedone77 (Oct 20)
- Re: UserID and hashed password for Lotus Domino jeff (Oct 22)