On 8/26/05, <b class="gmail_sendername">Fernando Meira</b> &lt;<a href="mailto:fmeira@gmail.com">fmeira@gmail.com</a>&gt; wrote:<div><span class="gmail_quote"></span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<span class="q"></span><div><div><br>
You're lacking optimism... Of course the brute-force attack was not
supposed to be done remotely! You can pull passwd to your local machine
and the let your computer handle it without interruptions. If some
proprieties of the password are known beforehand, then sooner would be
a matter of hours and later a couple of days. This is not even putting
into the game some distributed computing... <br>
</div><br>


</div></blockquote></div><br>True, but if you use shadow to store your
passwords your in much better shape since the average hacker can't get
a hold of the root owned shadow file.<br clear="all"><br>
-Mike<br>
<br>-- <br>________________________________<br>Michael E. Crute<br>Software Developer<br>SoftGroup Development Corporation<br><br>Linux, because reboots are for installing hardware.<br>&quot;In a world without walls and fences, who needs windows and gates?&quot;