30 Apr
2011
30 Apr
'11
8:20 p.m.
At 09:57 PM 4/30/2011, Vincent Slyngstad wrote:
I did figure out a way that they might be getting their
passwd files.
It looks sort of like they are scraping postings from the usenet archives, and putting
together login names with systems from back in the day.
Well, get to cracking. The other day a client asked me to recover the
passwords from a 90s-era AIX machine. In less than twenty minutes,
a cracking tool had recovered all fourteen account passwords.
The first thirteen appeared almost immediately; the last took a while.
- John