[prev in list] [next in list] [prev in thread] [next in thread] 

List:       bugtraq
Subject:    SecurID
From:       Peiter Z <peiterz () secnet ! com>
Date:       1996-09-17 4:53:36
[Download RAW message or body]

Vin wrote:

>        PeiterZ reported that he and his associates were able to penetrate
>SecurID-protected systems, apparently from the Internet.  I don't doubt it,
>particularly if he was using TCP-splicing with, say, Hobbit's Netcat.  An
>OTP, admittedly, does not secure the network.

        We did not use TCP-splicing / session hi-jacking to penetrate
the SecurID-protected systems. The attacks we used are in the white paper
at ftp://ftp.secnet.com.

        PeiterZ

[prev in list] [next in list] [prev in thread] [next in thread]