Bug#414534: ITP: sucrack -- multithreaded su bruteforcer

[Hendrik Sattler <debian@hendrik-sattler.de>]

Am Montag 12 März 2007 17:19 schrieb Tim Brown:
> On Monday 12 March 2007 16:08, Hendrik Sattler wrote:
> > Am Montag 12 März 2007 12:30 schrieb Tim Brown:
> > > Package: wnpp
> > > Severity: wishlist
> > > Owner: Tim Brown <timb@nth-dimension.org.uk>
> > >
> > > * Package name    : sucrack
> > >   Version         : 1.1
> > >   Upstream Author : Nico Leidecker <nfl@portcullis-security.com>
> > > * URL             : http://www.leidecker.info/
> > > * License         : GPL
> > >   Programming Lang: C
> > >   Description     : multithreaded su bruteforcer
> > >
> > > sucrack is a multithreaded Linux/UNIX tool for cracking local user
> > > accounts via wordlist bruteforcing su
> >
> > Is there any real need for such a tool in Debian?
> > It's not an administrative tool and it's obviously not meant for security
> > tests. I just can't see what the normal use of this tool would be.
> >
> > HS
>
> I disagree, it is used for security work.  I use it as part of my day job
> as a penetration tester, as have others including the author Nico, who is a
> colleague of mine.  Have you followed my responses to Marco d'Itri who
> raised similar queries?

Nope since he that did not go to d-d. Maybe you can outline professional uses 
in the description like done in the previous answers?

IANAL but there may be countries where distributing such a tool, with it's 
main/only purpose to break access restrictions, may not be legal (there was 
some discussion about this in Germany but I did not follow it closely).

HS