Actually if you set a comms trace going before users signon - you will see them coming into the 400 - username and password !!!!! But don't tell anyone!
+ Reply to Thread
Results 11 to 14 of 14
Thread: Passwords Revealed
-
05-04-2001 06:17 AM #11Guest.Visitor Guest
Passwords Revealed
-
11-28-2003 12:04 PM #12Guest.Visitor Guest Passwords Revealed
About 2 years ago, user id and passwords could be captured using dmpsysobj and looking at some offsets. Rochester ptf'ed the problem and they also strongly suggested retricting this command. I was able to capture QSECOFR password on another machine because of authority to dmpsysobj.
-
12-18-2003 08:57 AM #13Guest.Visitor Guest Passwords Revealed
A few years ago, i had an RPG program that enabled me, with QSECOFR authority, to reveal the UserID and password from the user profile file. Does anyone have any idea whether such a program still exists or where I might find a RPG listing. Craig
-
12-18-2003 08:57 AM #14Guest.Visitor Guest Passwords Revealed
If you are not using SSL (or similar) and using data transfer (FTP, ODBC, etc.) just use a sniffer and you'll see the passwords in actual text. There will be restrictions (how and if you use switches/hubs) but passwords as well as any other data being transferred (pay rates, sales figures, etc.) can be sniffed.
Reply With QuoteSimilar Threads
-
hide passwords
By Guest.Visitor in forum RPGReplies: 0Last Post: 12-10-2004, 12:07 PM -
DDM files and passwords
By Guest.Visitor in forum IBM i (OS/400, i5/OS)Replies: 0Last Post: 12-09-2002, 01:56 AM -
Passwords
By Guest.Visitor in forum GeneralReplies: 2Last Post: 09-17-2002, 02:28 AM -
Dup Passwords
By Guest.Visitor in forum SecurityReplies: 3Last Post: 09-18-1999, 03:31 PM -
Passwords
By Guest.Visitor in forum HardwareReplies: 0Last Post: 01-01-1995, 02:00 AM
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts