Pentesting Openmail Web login

From: s-williams@nyc.rr.com
Date: Wed May 23 2007 - 12:01:17 EDT

• Next message: Andy.Kitzke@insinkerator.com: "Question about vulnerability scanning"
• Previous message: Richard Brinson: "RE: Legality of WEP Cracking"
• Next in thread: s-williams@nyc.rr.com: "Re: Pentesting Openmail Web login"
• Maybe reply: s-williams@nyc.rr.com: "Re: Pentesting Openmail Web login"
• Reply: Rodrigo Montoro (Sp0oKeR): "Re: Pentesting Openmail Web login"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I am task with testing user accounts on our mail system. We currently have two systems Exchange, and OpenMail for Linux which is on the DMZ. We are interested in finding out how easy it might be for someone to guess the password of one or our users account.

And if the are sucessful what can the do on the linux box, with that username and password.

We have a main site with a link to the webmail system from there, ifi want to test this which tool might be the best for doing this since its a link and not the main page?

Thanks in advance
"A wise man ask questions, a fool is afraid of knowledge"

------------------------------------------------------------------------
This List Sponsored by: Cenzic

Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!

http://www.cenzic.com/c/2020
------------------------------------------------------------------------

• Next message: Andy.Kitzke@insinkerator.com: "Question about vulnerability scanning"
• Previous message: Richard Brinson: "RE: Legality of WEP Cracking"
• Next in thread: s-williams@nyc.rr.com: "Re: Pentesting Openmail Web login"
• Maybe reply: s-williams@nyc.rr.com: "Re: Pentesting Openmail Web login"
• Reply: Rodrigo Montoro (Sp0oKeR): "Re: Pentesting Openmail Web login"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:49 EDT