Am 27.03.2014 11:27, schrieb Joseph Tam:
>
> Reindl Harald writes:
>
>> frankly 8 chars is laughable, i recently wrote a PHP library to
>> generate secure random passwords and for 10 passwords get
>> 13 collisions is way to much given that that means you have
>> a collision every 8000 trie
Reindl Harald writes:
frankly 8 chars is laughable, i recently wrote a PHP library to
generate secure random passwords and for 10 passwords get
13 collisions is way to much given that that means you have
a collision every 8000 tries which means not you need 8000
in a real world attack
(O
Reindl Harald wrote:
Am 24.03.2014 12:47, schrieb Gedalya:
On 03/24/2014 07:34 AM, Jürgen Ladstätter wrote:
we use dovecot 2.0.9 and authentication against a mysql database. Everything
works fine, but we found some weird behavior – when the password is e.g.
“testpass” you also authenticate suc
Am 24.03.2014 12:47, schrieb Gedalya:
> On 03/24/2014 07:34 AM, Jürgen Ladstätter wrote:
>> we use dovecot 2.0.9 and authentication against a mysql database. Everything
>> works fine, but we found some weird behavior – when the password is e.g.
>> “testpass” you also authenticate successfully with
On 03/24/2014 07:34 AM, Jürgen Ladstätter wrote:
Hi guys,
we use dovecot 2.0.9 and authentication against a mysql database. Everything
works fine, but we found some weird behavior – when the password is e.g.
“testpass” you also authenticate successfully with “testpass123” or
“testpassNOT”.
Hi guys,
we use dovecot 2.0.9 and authentication against a mysql database. Everything
works fine, but we found some weird behavior when the password is e.g.
testpass you also authenticate successfully with testpass123 or
testpassNOT. Whatever comes after the correct password doesnt mat
