On 11/28 11:44 , Craig Barratt wrote: > Actually, the rsyncd authentication is a challenge/response type > using an MD4 hash, not plain text. The module and user name are > plain text. Sniffing would allow a dictionary-style attack (like > any challenge/response system) which would be successful if the > password was easy to guess.
I stand corrected. :) -- Carl Soderstrom Systems Administrator Real-Time Enterprises www.real-time.com ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click _______________________________________________ BackupPC-users mailing list BackupPC-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/backuppc-users http://backuppc.sourceforge.net/
