John Heasman's just started a blog over at blogspot.com.  Topics so far have been centered around bug-hunting.  Interesting stuff if you're more of a pentester than a vulnerability researcher (like me).

Add it to your RSS reader now!

This is a follow-up to a topic I touched on breifly before when I talked about the problem of trying to use the SSH client when you don't have a TTY.  I was recently in a position where I got an interactive shell on a box, discovered the root password but was unable to get root because I couldn't run "login" or "su".  Both of these required a TTY in order to work.

I don't present a definitive solution in this problem (if you have one please sent it in!).  However I discuss a couple of approaches to getting a TTY...

Guy Harper sent me a patch for smtp-user-enum.  It can now enumerate email addresses on vulnerable servers as well as OS-level usernames.  Cheers Guy.

The project page has been updated with example of how the use the new -D option.