[prev in list] [next in list] [prev in thread] [next in thread] 

List:       kde-devel
Subject:    [cybersysop813@HOTMAIL.COM: Get paste kppp *'s]
From:       Paul Dwerryhouse <paul () xenu ! ee ! mu ! oz ! au>
Date:       1999-08-26 0:35:32
[Download RAW message or body]


This cropped up in BUGTRAQ today...


----- Forwarded message from Tim Jones <cybersysop813@HOTMAIL.COM> -----

Approved-By: aleph1@SECURITYFOCUS.COM
Delivered-To: bugtraq@securityfocus.com
X-Mailer: Security Focus
Date:         Sat, 21 Aug 1999 00:52:04 -0000
Reply-To: cybersysop813@HOTMAIL.COM
From: Tim Jones <cybersysop813@HOTMAIL.COM>
Subject:      Get paste kppp *'s
X-To:         bugtraq@securityfocus.com
To: BUGTRAQ@SECURITYFOCUS.COM

Well alot of dial up tools do this put your password in *
so  you can let other people use your  
computer and dial up and they wont know what your password
is..

But in kppp all you have to do to fix out whats UNDER the *
is just CUT and PASTE.. Thats right..
Just COPY the *'s and paste then to a term and you can see
what there password is...

I am not sure if this is a problem or what.. But there is no
reason to have the *'s if they are  
so easy to get past...

btw somone might want to report this to the makers of
kppp..    
--flipz

----- End forwarded message -----

-- 
"The growing use of e-mail, not to mention Web-page   |   Paul Dwerryhouse
publishing, threatens to reverse the trend towards    |_  paul@xenu.ee.mu.oz.au
illiteracy among the supposedly educated without at the |___    Melbourne,
same time improving their spelling". -- Michael Swaine, DDJ |   Australia.

[prev in list] [next in list] [prev in thread] [next in thread]