Comments on: A Brief Look at O5Logon http://securitymusings.com/article/2011/a-brief-look-o5logon Rants and raves from information security professionals Sat, 19 May 2012 23:32:04 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Malieh http://securitymusings.com/article/2011/a-brief-look-o5logon/comment-page-1#comment-44652 Malieh Mon, 19 Jul 2010 11:54:07 +0000 http://securitymusings.com/?p=2011#comment-44652 In the 3rd paragraph,latest sentence, "This is possible because guessing the hash will allow an attacker to simply decrypt the password sent from the client by sniffing the transmissions and comparing them later." you mentioned the word of "decrypt" for the password "hash"! While decryption has been never one-way cryptography! In the 3rd paragraph,latest sentence,

“This is possible because guessing the hash will allow an attacker to simply decrypt the password sent from the client by sniffing the transmissions and comparing them later.”

you mentioned the word of “decrypt” for the password “hash”!

While decryption has been never one-way cryptography!

]]> By: Top 3 NoVA Infosec Blog Posts of the Week | NovaInfosecPortal.com http://securitymusings.com/article/2011/a-brief-look-o5logon/comment-page-1#comment-43008 Top 3 NoVA Infosec Blog Posts of the Week | NovaInfosecPortal.com Fri, 09 Jul 2010 19:04:52 +0000 http://securitymusings.com/?p=2011#comment-43008 [...] #3 -A Brief Look at O5Logon: A look at O5logon from oracle “For authentication, newer versions of Oracle (11g+) use a session agreement and key exchange scheme known as O5Logon.” Do you want to know what’s new or the weaknesses for O5Logon, then click here [...] [...] #3 -A Brief Look at O5Logon: A look at O5logon from oracle “For authentication, newer versions of Oracle (11g+) use a session agreement and key exchange scheme known as O5Logon.” Do you want to know what’s new or the weaknesses for O5Logon, then click here [...]

]]>