On 6/15/07, tedd <tedd@xxxxxxxxxxxx> wrote:
At 6:56 PM -0400 6/15/07, Daniel Brown wrote: >> > > I don't think it's PAM-compliant to use a single-quote character >in your passwords, Tedd. ;-P > >-- >Daniel P. Brown Daniel: Bzzzet, thanks for trying. Let me explain again, maybe I did explain myself well. In the show-code folder (link below) is a php file entitled "a.php". Inside that file are password and user ID variables. They don't mean anything, nor do they do anything, but they are there. Now, I did say that you have all the tools you need at the site to discover what these values are. Can you do it? Again, here's the link: http://sperling.com/a/show-code/ Is this trivial or not? Cheers, tedd -- ------- http://sperling.com http://ancientstones.com http://earthstones.com
Tedd, You may not have noticed the fact that the joke I made was directly-related to the content within the file. I just didn't want to post it to the list in case anyone else was trying. It only took about 90 seconds to get the data. The password has a single-quote in it (hence the non-PAM-compliant crack). Also, is it necessary to have the space before the $id tag? Aren't $id fields usually placed prior to the $password field? And finally, shouldn't the phrase end with a question mark, considering it's an inquiry and not a statement? That should suffice.... right? ;-P -- Daniel P. Brown [office] (570-) 587-7080 Ext. 272 [mobile] (570-) 766-8107 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
