Hi,
Does anyone noticed that to authenticate in any wireless router running DD-WRT firmware (lastest version), it only check the first 8 characters of the password???
E.g. you can set the root password to [EMAIL PROTECTED] and when you try to authenticate with [EMAIL PROTECTED] ... got root!
Some other firmware users noticed and reported to the developer, but no action was taken.
It´s a excelent firmware to use with linksys routers, many extras resources, etc, but not from the security point of view.
[]´s
João Castilho
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
