Re: Pentesting Openmail Web login

To:	"Tremaine Lea" <pen-test@ddiction.com>, listbounce@securityfocus.com, s-williams@nyc.rr.com
Subject:	Re: Pentesting Openmail Web login
From:	sherwyn.williams@gmail.com
Date:	Thu, 24 May 2007 02:53:28 +0000
Cc:	"pen-test@securityfocus.com" <pen-test@securityfocus.com>
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	pentest-list2@consult.net
Delivered-to:	mailing list pen-test@securityfocus.com
Delivered-to:	moderator for pen-test@securityfocus.com
Dkim-signature:	a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:content-transfer-encoding:reply-to:references:in-reply-to:sensitivity:importance:to:cc:subject:from:date:content-type:mime-version; b=PCAAYM2J1erZ61BKF0dpfI3ra+sB68r7wL37C5ybc4D0g5AA/OHGCfIa6OU5kKH5OHgb6T4yA9hJBRTMebz1eHmI/EO2BnMHDuld6Umr/1EUsEzkHoG4RNFMy5nLcXt2OkmKVHI7XNZJwaEf5DlrwWw8ev9HWG8nmRbUES/BIgQ=
Domainkey-signature:	a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:content-transfer-encoding:reply-to:references:in-reply-to:sensitivity:importance:to:cc:subject:from:date:content-type:mime-version; b=Jj//OKQ44H2TuJTOnfHaxTTXLq8K65F203vzkacC/BEJoRh8qURg+oe1+u+wDRGJwpvd3r/XqNJTJP7i6D1e5AQH37G/bUQ0E/q4kdoauXHu5K5n/6R5aFQWuoGrgN2yltdnI66InULf8Wx/dFDvRaKDYO7a945L4hxdQVe2Pxk=
Importance:	Normal
In-reply-to:	<E1E2BAF1-69D7-4311-BAFC-8E756AF5D22E@ddiction.com>
List-help:	<mailto:pen-test-help@securityfocus.com>
List-id:	<pen-test.list-id.securityfocus.com>
List-post:	<mailto:pen-test@securityfocus.com>
List-subscribe:	<mailto:pen-test-subscribe@securityfocus.com>
List-unsubscribe:	<mailto:pen-test-unsubscribe@securityfocus.com>
Mailing-list:	contact pen-test-help@securityfocus.com; run by ezmlm
References:	<679373278-1179969881-cardhu_blackberry.rim.net-1262565111-@bxe047-cell01.bisx.prod.on.blackberry> <E1E2BAF1-69D7-4311-BAFC-8E756AF5D22E@ddiction.com>
Reply-to:	sherwyn.williams@gmail.com
Resent-date:	Thu, 24 May 2007 18:55:52 -0600 (MDT)
Resent-from:	pen-test-return-1078484241@securityfocus.com
Resent-message-id:	<20070525005552.D5B0D143FC2@outgoing2.securityfocus.com>
Resent-sender:	listbounce@securityfocus.com
Sender:	listbounce@securityfocus.com
Sensitivity:	Normal

Thank you all I will try those and see. 
Sherwyn Williams
Technical Support
The Williams Solutions  

-----Original Message-----
From: Tremaine Lea <pen-test@ddiction.com>
Date: Wed, 23 May 2007 19:56:46 
To:s-williams@nyc.rr.com
Cc:listbounce@securityfocus.com,"pen-test@securityfocus.com" 
<pen-test@securityfocus.com>
Subject: Re: Pentesting Openmail Web login

I'd recommend Nessus.  It has plugins specifically for this type of  
thing and is definitely capable of a variety of brute force attacks.


On 23-May-07, at 7:26 PM, s-williams@nyc.rr.com wrote:

> Anyone have a good tool in mine?
> ------Original Message------
> To: listbounce@securityfocus.com
> To: pen-test@securityfocus.com
> Sent: May 23, 2007 12:01 PM
> Subject: Pentesting Openmail Web login
>
> I am task with testing user accounts on our mail system. We  
> currently have two systems Exchange, and OpenMail for Linux which  
> is on the DMZ. We are interested in finding out how easy it might  
> be for someone to guess the password of one or our users account.
>
> And if the are sucessful what can the do on the linux box, with  
> that username and password.
>
> We have a main site with a link to the webmail system from there,  
> ifi want to test this which tool might be the best for doing this  
> since its a link and not the main page?
>
> Thanks in advance
>
> "A wise man ask questions, a fool is afraid of knowledge"
>
> ---------------------------------------------------------------------- 
> --
> This List Sponsored by: Cenzic
>
> Are you using SPI, Watchfire or WhiteHat?
> Consider getting clear vision with Cenzic
> See HOW Now with our 20/20 program!
>
> http://www.cenzic.com/c/2020
> ---------------------------------------------------------------------- 
> --
>
>
>


------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------

<Prev in Thread]	Current Thread	[Next in Thread>
Pentesting Openmail Web login, s-williams Re: Pentesting Openmail Web login, Rodrigo Montoro (Sp0oKeR) Re: Pentesting Openmail Web login, s-williams Re: Pentesting Openmail Web login, Brent Wolfram Re: Pentesting Openmail Web login, Tremaine Lea Re: Pentesting Openmail Web login, sherwyn . williams <= RE: Pentesting Openmail Web login, Clemens, Dan RE: Pentesting Openmail Web login, Marco Ivaldi Re: Pentesting Openmail Web login, Bojan Zdrnja Re: Pentesting Openmail Web login, pagvac Re: Pentesting Openmail Web login, rajat swarup

Previous by Date:	Creating API for SSS & Appscan, Vivek P
Next by Date:	Survey on Supercomputer Cluster Security, cluster . security
Previous by Thread:	Re: Pentesting Openmail Web login, Tremaine Lea
Next by Thread:	RE: Pentesting Openmail Web login, Clemens, Dan
Indexes:	[Date] [Thread] [Top] [All Lists]