[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

tcpdump for sniffing POP3 -- methods ?

Subject: tcpdump for sniffing POP3 -- methods ?
From: putinas.piliponis at icnspot.net (Putinas Piliponis)
Date: Tue Apr 13 11:42:47 2004

----- Original Message ----- 
From: "John Fox" <readbsd_(_at_)_mind_(_dot_)_net>
To: <freebsd-isp_(_at_)_freebsd_(_dot_)_org>
Sent: Tuesday, April 13, 2004 20:03
Subject: tcpdump for sniffing POP3 -- methods ?


> We've got a Windows machine running IMail and authenticating
> POP3 from an NT Primary Domain Controller.
> 
> Our plan is to move these users over to our UNIX system, but we
> don't have a record of their passwords.  This means we need to
> either
> 
> 1) Grab them out of the files on the PDC. (I think this is
> not possible.)
> 
It's very possible and very easy actually.
Use the program pwdump3 on the pdc and you will get dump suitable
for john the ripper password cracker. after a while you will have all the
passwords. ( or as well cain, Lopht cracker or any other )
and your method two probably is more complex, because if its using
authentification mechanism on domain - they are not plain passwords as well

> _______________________________________________
> freebsd-isp_(_at_)_freebsd_(_dot_)_org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-isp
> To unsubscribe, send any mail to "freebsd-isp-unsubscribe_(_at_)_freebsd_(_dot_)_org"
> 
>

References:
- tcpdump for sniffing POP3 -- methods ?
  - From: John Fox

Prev by Date: tcpdump for sniffing POP3 -- methods ?
Next by Date: tcpdump for sniffing POP3 -- methods ?
Previous by thread: tcpdump for sniffing POP3 -- methods ?
Next by thread: tcpdump for sniffing POP3 -- methods ?
Index(es):
- Date
- Thread

Visit your host, monkey.org