[2827] in bugtraq
Re: Write-only devices (Was read only devices)
daemon@ATHENA.MIT.EDU (Ken Weaverling)
Thu Jun 27 13:37:02 1996
Date: Thu, 27 Jun 1996 12:24:29 -0400
Reply-To: Bugtraq List <BUGTRAQ@NETSPACE.ORG>
From: Ken Weaverling <weave@hopi.dtcc.edu>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@NETSPACE.ORG>
In-Reply-To: <009A479F.D5B723D7.62@samba.cnb.uam.es>
On Thu, 27 Jun 1996, J.R.Valverde (jr) wrote:
> FTP: failed login attempt for user "pAsSwOrD"
> FTP: successful login for user "user" two seconds later
I always wondered why the heck this happens. While knowing what account is
being attempted is valuable, why the heck doesn't the code just try and
see if pAsSwOrD is a valid account name? If it isn't, don't display it
or say "failed login attempt for an undefined system user."
If the attempt was to a valid account name, then record that info. If one
of your users is using another account name as a password, your obviously
not appending your list of user account names to your Crack dictionary.
