× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  • Subject: Re: QSYUPTBL
  • From: "Phil Hall" <hallp@xxxxxxxx>
  • Date: Mon, 5 Jun 2000 16:04:34 -0500

Gene,

> In addition to storing passwords in ciphertext, OS/400 stores
> passwords in plaintext, too.  For example, after User A signs on,
> User B can type the following and see User A's plaintext password
> (provided User A and User B are signed on in the same subsystem):
>
> DMPSYSOBJ  OFFSET(210  1B0  10)  SPACE(0  14)

An interesting twist on sniffing passwords. If a user has access to
DMPSYSOBJ, it sure beats sniffing the IP packets for telnet sessions !



+---
| This is the MI Programmers Mailing List!
| To submit a new message, send your mail to MI400@midrange.com.
| To subscribe to this list send email to MI400-SUB@midrange.com.
| To unsubscribe from this list send email to MI400-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: dr2@cssas400.com
+---

As an Amazon Associate we earn from qualifying purchases.

This thread ...

Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.