BugTraq
Back to list
|
Post reply
phpBB Security Bugs
Feb 20 2003 08:37PM
Lucas Armstrong (lucas cgishield com)
(1 replies)
Re: phpBB Security Bugs
Feb 21 2003 10:19AM
Konrad Rieck (kr roqe org)
(1 replies)
Re: phpBB Security Bugs
Feb 22 2003 10:20AM
Christian Vogel (chris obelix hedonism cx)
Hi Konrad, Lucas and List,
On Fri, Feb 21, 2003 at 11:19:52AM +0100, Konrad Rieck wrote:
> I am just wondering... You are talking about guessing a 33-digit
> hexadecimal number?
No, he was talking about guessing each hex-digit one at a time,
so he will need 16*33=528 guesses to exhaust the whole "hash-space".
See in Lucas' SQL: mid(user_password,n,1)=char(guess), the "algorithm"
goes like this:
for(n=0..32){
for(g='0'..'9','A'..'F')
if( guessed_right(n,g) ){
hash[n]=g;
break;
}
Chris
--
First snow, then silence.
This thousand dollar screen dies
so beautifully.
-- Simon Firth
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
On Fri, Feb 21, 2003 at 11:19:52AM +0100, Konrad Rieck wrote:
> I am just wondering... You are talking about guessing a 33-digit
> hexadecimal number?
No, he was talking about guessing each hex-digit one at a time,
so he will need 16*33=528 guesses to exhaust the whole "hash-space".
See in Lucas' SQL: mid(user_password,n,1)=char(guess), the "algorithm"
goes like this:
for(n=0..32){
for(g='0'..'9','A'..'F')
if( guessed_right(n,g) ){
hash[n]=g;
break;
}
Chris
--
First snow, then silence.
This thousand dollar screen dies
so beautifully.
-- Simon Firth
[ reply ]