Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Symantec Pulls Plug on L0phtCrack



 By: Ryan Naraine
2006-03-08
Article Rating:starstarstarstarstar / 1


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
The Internet security vendor discontinues sales of the well-known password cracking application.

Symantec has quietly pulled the plug on sales of L0phtCrack, the venerable password auditing and recovery application.

The decision to discontinue support for L0phtCrack, also known as LC5, comes just months after Symantec stopped selling the application to customers outside the United States and Canada out of concerns that it violated cryptography export controls.

The Cupertino, Calif.-based security vendor could not be reached for comment on the decision, but a note sent to existing L0phtCraft users said the product did not fit into Symantecs plans for the future.

The ship date of L0phtCraft was Mar. 3, 2006 and Symantec will offer customer help until Dec. 16, 2006. The company will not be shipping any product code updates, enhancements or fixes to L0phtCraft after March 3.

Resource Library:
Encrypted lockbox aims to clean up password clutter. Click here to read more.

"Symantec will continue to use reasonable commercial efforts to provide available customer support by e-mail to U.S. and Canada based customers who purchased L0phtCrack (LC) products," the note read.

"As a courtesy to LC customers, we offer customer help via e-mail regarding product usability inquiries through December 16, 2006," the note added.

Rick Fleming, chief technical officer at security risk assessment firm Digital Defense said the end of Symantec support for L0phtCraft support isnt a big surprise.

"There was always going to be a double-edged sword for Symantec. L0phtCraft is valuable as a good password-strength auditing tool but its also popular with [malicious] hackers who used it to break passwords and attack networks," Fleming said in an interview with eWEEK.

He said Digital Defense used L0phtCraft in its penetrating testing products to identify and remediate security vulnerabilities that result from the use of weak or easily guessed passwords.

L0phtCraft can also be used to recover Windows and Unix account passwords to access user and administrator accounts whose passwords are lost or to streamline migration of users to newer authentication systems.

Symantec buys security consulting pioneer @stake. Click here to read more.

L0phtCrack was originally produced by the L0pht, the Boston, Mass.-based security research group founded by Peiter "Mudge" Zatko and Chris "Weld Pond" Wysopal.

It combines several password cracking techniques, including dictionary, brute-force and hybrid attacks and became one of the most widely used in the hacker community.

In 2000, L0pht merged with security research outfit @stake and continued to produce L0phtCraft until 2004 when Symantec bought @stake.

There are several alternative password auditing tools available, including John the Ripper, RainbowCrack and Cain and Abel.

Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.



  Reader Comments: Symantec Pulls Plug on L0phtCrack
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Ryan Naraine
 


xr80VӮcv ٖ˚-*OuEB!)/w^9q_>M My>]D ~vv$IM˙s\ؔ\sSãw$vv~]2i* dz&@ j\7R}f], WhkLNშ :#:B.Rk2 Z535'ԗo+Nne0.:Iq6*6Oմn<شY$1Oh] >YQږy@6ǮH;*#7ܙx8ӽ/DeO؀IYIM"x<&j>wn3dYǝ (ƻf {iZvP;Uya5h -Br!",{{74ɿT݉[m>){"-XdUZL wb#6S!1kT%T>lYG|ݑ|YcX:QA3MuL_CԿ($fʀKFS+F=Ķ|hG's:t ̿{׳ρבnLE4f‰EUas88M-AA9AN,9ĠjPEb+5gxk_/:O/9ǽ>9]Q]xF4pg Z_Zz!Ow| nr@ I/]o"{$,Y`M|`ImdƱ(|ǺrN9~sMjୱJ+Ҕ& )B:A`ºm$9,8ȟk4R\ 9lb)6K .&7R&,|YBb$rVȨUSAEI7CD r23~B(PHQ>z%Kus7p@emCrjNڊ1Wr{H .u&N{sL~?w8^%glh|X.B2iK1PWG5V6b1x+YE*X8ʍ85m!SGñA s&M:vPE0`;}F_Ϩi-f͑8!9~tDAG66^zK tcj>; ä wX8=Z sO6%H_¤>< ͂=H:}m`5$'C-_-s#09wwښA"Q5ݻ#i`y1yjS!Tg,zzC_ s lmVl}d`1 5%~N;r-FaA.G)))?]Pv9B B!B0 H P􎄰J9iW*LO:Rɻ=!đtNܡZWhƚRN٣XB ^X/_2әJRj2mlƺń(VFNDl0Vn) P^!-;cL o¯.M]-K hNBUTC_K+8從2MSTn^ß#>d .z:H(p0ѿ{Ğnv(֌4UʝWQy'g)5WMyքc$C ֓6_2-˧NESr :w'NѫU?ĿL?ͦzkXؽh@r6ʞveZZ @ĿUila7k `|M("6XR(vӱϥ5Ӳ =CM*&7k7CSklQ6qbQ5JȄm<Mj֨rzg0 g%AqsGNݔ6 [IFbt|s@kQDsOT>vGl#pH!%6D;~c sOѭ,p8*4jkT=Ckab7_E3ka{60g@u\XlnrptVה=- Τ_8'Wv*1f&6Xc˦>oӞW+>hl@dX(%Uql"zd\s˰e0GZ!疳`npb Z*"f~q~049?^ z]9YP? !WܕVR5󀻬3wdlrCJRE=UЀ!as`E . ڀs gDrIa TWkcS@@kSU Փ.E^qqV%Ŵ谢Xx}Sː 0gxWyd.>3IV/ЪZZ:_VŅ_2ױgR!G܏p Lksi>⍆֨fiOGu"M."08zGdDRz+>n ~/I7A4ǭNT%:"c^.2|Y_xޘ͛#i }[U!ӔRe ɲ7)6VCiC/\T3 f;/6}b;_*|)ɧMC 7ѐJD#~g$} =բ,AEuTjjEIz,pE︤vd iW&{\x&\_{ Ƌbo(Q^j+Gs;"ʊg b|q{q>'F{lj>g+jBgYb@N -$ڎVum4eX$5gMٸU V|2.izIR“sG&:(8=.]EQh2)nQ==ՍћY G(w}CI H5 ]Uj; ss4a!`\߫=bxEOP?l]^*RvA *s>PV|o -"ԄpLaV*S7xo~!RH##I EUZq8x J*1/ȟ-1Ή{O{{=HL_BP`n&wmOI@ ~1tcϼ1V̶\fo~gQW uxpOJۦ>] y>2Ai^;.y렘iteFV0 hqïR}R9 hXꞷ?tpCmtj2a'A)h]1}̮銿F>; k!$r zyCB|IwֻY#%{.[Oz܃g,= Y#BuWȧͦ V>d8) hdjc\8$Ø/=^q@چWһ:\qb륨kNZ _k=WE.'7(alF{Y_aY,$20! Iku:;>  kJ=!o8/_i9D9bT0_RJI"Q6#=)#hqwDǗ&1_0[N㷚oWȘI;D_q- '=?EUh'w?!g>48rEA$M 2a]ZqnszOiR'DZ3pq*hKhwVAk6Ê,qx\/<[<,Mw[1C{7 A犴/ NA WO$ V_ ޼=oQwP]Yz$AC~kM|r¸y}j*=Yl[h_?I+I㆟is,\OhvdLg!I )Vz57}ʜ9%/+x|42(o9P2QtI J `̞xqC7跷b8w@g󛻌w5GGoqSxw{eQJ=qm@kjej\,~^[DqD؈ڽ]uUN&6m>-3 hL :6;x5tY aAXE h7\#9S1<$9 nnLRx66A~A< v4)[˷xf}i!2UC!_Ц õY`VǴ ?/qx.E[ʷ/'Ɏ?c[P|=ǜSF< w *xnI5%??=3q x fȓqi+"@wыK\-1-Z]Mfֈe[a32OrYfS-U+_|X`ˤ~bO/^#L12EnkS3jc,qɀ:d`Y4{w+[J:dc'"ء>Ym#ǐu9lQ>]תJCw,T uL1,tόNs DD+m=2H $ؠRJ^lB峣06 C \zov[{_81F#1vsѴ0{p?c`’7N[dB1Y쿓8nGw,O)RZg!9Pm&1a>HgAW7AgQF-Lc w]m!VYMh4q)nh׆@i)첎|AގbmE)> D%:O"m8B<=7tB0Df|U%60YN7PfgP@s8iJlIp`${ZT"s|%MK;WWәyS0ͤI6h{q+{g1lj bb%%[ B|D}YIA峐c{~%u)w-sUopՊ3a5{m+^X^6`}l~°0ĄFgI}pI. Duf}{fSsBtOAC /fiĖ.Ke.j]"D1se\pC?04-v(H1򍺕jNJ(%X^ u2J[ SXRC !]0Ytz7H/c"(,.PH7 CAEtkѷ}#'P{)<<pn13򈄯+($| <I G{5s+YFq6: !Eq7},Aih,[S TF=p2XYR[ +9*!c <;J):v'ѫd$@|hۡ<!^ާؖ]GX v- M+_aV|Eb|kZ&{|в,!Q߽s߽s߽s߽s߸wQ.+ʷ[(C?mcaci #ڒ;z _̵FHm=-eRaT::(7)3ػKw>}Z^NdH[q\d;@tX 0ٮqYt/\7_?!2jR$,?\hk$ ,Vߚ~󎷕 CC&r\nK|隆.~eI~4>^ֺ'߾Kw.u3M ͜z!ě ڑS ;X[yknCI$YZ;/,{uvrZ]n^ AZ^r.XC tO+^ΡGnʸh+;mO[B *_|Ĝ+ŷj ̆.`܍VޤT찆߼s ٩͍In9ͤ- Z&C6௖:ư>/)5<}> dUokoȊt%۬Rۉ2ײObr,ıu3Շ=  ƗY'6d7 [IHgsS8OƿPcEX1,-iBda 8ìVᶀȿ zs݃^&]ݽ]T\&ܺF{WH\-N ֏/*`εm{;pO}}aIE3(hMVÙ!~0 Ǹlc"n8 etŐ͝~KeSSٿcgIS`n ƵVxrڞLvm_@gn/&[?qñŃ4&KuEnf? 3,M?"o?b)D)1E[LGog }1޴sZ2US Q?Dl ~ oH?ZYtĕ'7g 2~(YAx8j K{7{{[-ݸ$]!-`vyƏ;"(7v^P|lڏ‹_jj}:.:#,^q I YW oX3CvF rΗGG30kq'6"j\D`ۆjsc`vr*bfiA i!FvϏ;Kb+I7Q;F$qhkjj5b5V^ g,akzrF-?x$ǍE/]Q|~8.2dR  /)_7LW& \sj61%^R>&sjxVSz~zr_ZJӂ,w%]dox7:[c [#UA2A5]|\U BI?X|^s!9VŠx!Vy ?Lm+=umvX5.ezu3=Ri<"} ޼voO%ܬTMdk- GܬsG܀SmQNa=DXo2'8eY2n)RjXk>ITap=jh ܻD2ϤHd7έ^U@+)ZC;0nr'[@r0hۈ) $c |Ð1نRǠ{QD^26Fiŷ~(l8*wxcb|>gG&u?PʿJc*gn vqU@9 "}nA=bAa~N­!P)awS0Z"ma`6w}``EP00a|Lngy7]_M:Q̬"ΩfldaQ({b:Mt,|.+,$nNKM 9r$!%H$`x=9`1@2߰*%3ʰLXU+#ͪg2q&JZ J`xfA dhz߃['_Ч6#`;7Lо>Z6Z9;YWG>;՚#̐:|jir=ZZ+!z,8j67a\nq4ħYh@zB+4[EYFG(Q+Q~Wˏ@2ʑˏǝ#(?\~96v q=(u3EF9Bc? \~2kg9<瀟 3yA@zP[ԙq?ޢD)FE5R{zY8#has;ž^ElxaŬYbl!hx4}k6OdB'pZ`("B74\9)螩zȧ N 7\zќ8w&; P7maI拑T-kZYoZԪw俓+D2LG b3jJ]NmժJRL3DAzg l]{y^d fMȡ'!pA>fJ-@ P1=::_l*Yۼx0l{|yN؛ڎy@7 J,v;ŨňD@s]C=mctq) {{[1g7ډe:'̔q8S{.ӄYADۼfyV=ȾwF=CSYF L |1Q>O&D|&߲)tO U/ADlZeSq0S/X8Df^X Nؒ1"QSRۨWY)"9`X)RǬˆax~p&td ܹ^܉o8qK)'@:c[I փݎ/jc5v`תb5c*Kf.|6bRF5ܠ}֝D#iZ#XnƄ_ðPo=,N7"4Σ/ݞSZ5et[~m@8>qi o6gG=םېچ뺺up/O^ێ~lX3&?e{ITgŃB|(pIi/ 12D7Oa\װvBaIgL,ٽ9 l|0CDa0gTbgHIأ_BDOvL0| `?94Ǟ”0ـO ؠ+.Ġ/>''4WB):*q87BZнM!^ W, {+2‡_JdԦE^k/8?uW"k #q}$!1qps$I!+KESX^AG}FV^\Dπn fyy] ,prT" cvc{[/I)H0\dzd;]v 3RǙ,`+ߘ' g\6Xl=˷ϒeΌzLT zZ= v,8^z'ϓޒ{zn_VeńK!:F1HYUҎ_w.M$Cb9G8]! ""_Sanho/y{B``>L#c? `vwb9c˖; Mm+#8B>ܾlQ޺qml.; +CO1֪TgU|>cx G} ~2*DׁOvGD gsœA6hxM@(_Gْk0F=-Hˍt_&%\"dⲴhlg`wDYs"sE%X,8/ ufw);\r(#<[^ҵ</x -] E p#k_2se>v ǯ-J^Qt 7tlmb @J\9 >m73Tt ` GYu`Kr8ǩk[mxtz w}uky!.,0:7 f˟]~Tqٶ7(G,cӴsQa[:67n ۲My˷TL\7o難-mycQ1W ?Il}X<ٰ޳ɋ7W=?5f;7ǿi<>,eL׎aYX&5ę3/O C7Ѱ0 L;,luEG%RJACb 0F :eb|/f@h<˜4W6IĶqynuҵ-ˑ;`y/|gvC{%=\s!&tԵa=X +K- QwuI`)XqC"^ֳ 6A|Ѿy6=xL 2VjwVVtƦI21qzPRKmw9n~;1{6JB6%s\ɜKRSk$5WYViQ}&' Cfڱ wm<lx61/O(