superfrink has asked for the wisdom of the Perl Monks concerning the following question:
The technical staff at a client of ours resigned. They left a list of about 40 passwords and variations but we do not know which accounts or machines they belong to.
Ideally we want to minimize downtime to reboot and reset passwords. Especially since we don't know how things are configured in case say a switch config was not saved.
There are Linux servers, switches, and routers. I don't want to manually try every combination. It's tedious but I am more worried I will make a typo and miss an account.
I was thinking of writing a script using some modules like Net::Telnet::Cisco , Net::SSH::Perl , and Net::Telnet . Then it hit me there is probably already a program like this. Any suggestions?
Update: Thanks to everyone who posted a useful reply. Someone recommended http://freeworld.thc.org/thc-hydra/ . It can read files of usernames and passwords so we can avoid writing code. It still looks like we will be rebooting some machines to reset passwords. mr_mischief, good idea to drop in a machine acting as a transparent bridge running a packet dumper on interfaces as needed. To address the suggestions to work with the previous admin, sometimes people are not willing to work together.
Ideally we want to minimize downtime to reboot and reset passwords. Especially since we don't know how things are configured in case say a switch config was not saved.
There are Linux servers, switches, and routers. I don't want to manually try every combination. It's tedious but I am more worried I will make a typo and miss an account.
I was thinking of writing a script using some modules like Net::Telnet::Cisco , Net::SSH::Perl , and Net::Telnet . Then it hit me there is probably already a program like this. Any suggestions?
Update: Thanks to everyone who posted a useful reply. Someone recommended http://freeworld.thc.org/thc-hydra/ . It can read files of usernames and passwords so we can avoid writing code. It still looks like we will be rebooting some machines to reset passwords. mr_mischief, good idea to drop in a machine acting as a transparent bridge running a packet dumper on interfaces as needed. To address the suggestions to work with the previous admin, sometimes people are not willing to work together.
|
---|
Replies are listed 'Best First'. | |
---|---|
Re: Brute forcing account logins.
by johngg (Canon) on Apr 29, 2008 at 16:32 UTC | |
Re: Brute forcing account logins.
by starbolin (Hermit) on Apr 29, 2008 at 16:29 UTC | |
by jhourcle (Prior) on Apr 29, 2008 at 19:27 UTC | |
Re: Brute forcing account logins.
by BrowserUk (Patriarch) on Apr 29, 2008 at 23:13 UTC | |
Re: Brute forcing account logins.
by mr_mischief (Monsignor) on Apr 29, 2008 at 21:34 UTC | |
Re: Brute forcing account logins.
by Fletch (Bishop) on Apr 29, 2008 at 16:31 UTC | |
Re: Brute forcing account logins.
by dwm042 (Priest) on Apr 29, 2008 at 17:59 UTC | |
by plobsing (Friar) on Apr 29, 2008 at 19:03 UTC |
Back to
Seekers of Perl Wisdom