[Gllug] [OT] MySQL experts?

Jackson, Harry HJackson at colt-telecom.com
Wed Feb 20 16:29:26 UTC 2002



> -----Original Message-----
> From: Paul Brazier [mailto:pbrazier at cosmos-uk.co.uk]
> 
> > +-------------------+-----------+------------------+
> > | Host              | User      | Password         |
> > +-------------------+-----------+------------------+
> > | localhost         | root      | 375793302c0bf*** |
> > | eagle.admin.local | root      |                  |
> > | localhost         |           |                  |
> > | eagle.admin.local |           |                  |
> > | %                 | admin     | 675bd1463e544*** |
> > | %                 | superuser | 7e82afb618ffe*** |
> > | %                 | user      | 66dfb2963aff0*** |
> > +-------------------+-----------+------------------+
> > 
> > (I'm taking no chances on anyone running crack on
> > these passwords!)
> 
> I think you can actually connect to a MySQL database even if you only
> know the encrypted form of the passwords i.e. without having 
> to reverse
> the password encryption.
> So only 16^3 possibilities to try? ;)

Not in my version. I imagine it doing the de-encryption on the encrypted
password and coming up with some spectacular results. Can anyone remind me
of the technical term for crypto that gets un encrypted on the next
encryption (breathe).

Harry


*************************************************************************************
COLT Telecommunications
Registered in England No. 2452736
Registered Office: Bishopsgate Court, 4 Norton Folgate, London E1 6DQ
Tel. 020 7390 3900

This message is subject to and does not create or vary any contractual
relationship between COLT Telecommunications, its subsidiaries or 
affiliates ("COLT") and you. Internet communications are not secure
and therefore COLT does not accept legal responsibility for the
contents of this message.  Any view or opinions expressed are those of
the author. The message is intended for the addressee only and its
contents and any attached files are strictly confidential. If you have
received it in error, please telephone the number above. Thank you.
*************************************************************************************


-- 
Gllug mailing list  -  Gllug at linux.co.uk
http://list.ftech.net/mailman/listinfo/gllug




More information about the GLLUG mailing list