Send password over TCP connection

Laszlo Zsolt Nagy gandalf at designaproduct.biz
Tue Oct 11 09:23:27 CEST 2005


>If you really want to do it right, use SRP, <http://srp.stanford.edu>.
>  
>
This is a bit offtopic here. I read the RFC and I do not see why SRP is 
not vulnerable to dictionary attacks.
If I have a working client software then I can use it to reveal 
passwords. Isn't it a dictionary attack?
Can you please enlighten me?

   Les




More information about the Python-list mailing list