Wrong domain is not checked ?
Pedro Miguel Frazao Fernandes Ferreira
pfrazao at ualg.pt
Tue Feb 23 17:37:14 GMT 1999
Allen Reese wrote:
>
> Even with policies, people are able to execute command.com without logging
> in. from there you can run explorer.exe and you have all you need.
> getting around even the best 9x security can be trivial.
How do you execute command.com without loging in ? I have checked this
and I can not do it. But as I pointed out earlier, I have installed the
&%$#&%$ft W95 Resource Kit and the respective patch. I just dont know if
it alters something.
Pedro
>
> Allen Reese
> Senior Software Engineer
> Driversoft, Inc.
> allen at driversoft.com
>
> On Wed, 24 Feb 1999, Gerald Carter wrote:
>
> > Bas.Kelderman at eptl.elf-p.fr wrote:
> > >
> > > That is not completely true, I run Samba 2.0.2 and a bunch of Win98
> > > pc's and the authentication is done through Samba and I have a policy
> > > that doesn't allow users to log on unless they are
> > > authenticated within the domain.
> > > So that is a way to solve it.
> >
> > "Windows 9x gives you all the security you deserve" :)
> >
> > It is impossible to completely secure a Windows 9x box period.
> > Believe me, I have tried for countless hours.
> >
> >
> >
> >
> > jerry
> > ________________________________________________________________________
> > Gerald ( Jerry ) Carter
> > Engineering Network Services Auburn University
> > jerry at eng.auburn.edu http://www.eng.auburn.edu/users/cartegw
> >
> > "...a hundred billion castaways looking for a home."
> > - Sting "Message in a Bottle" ( 1979 )
> >
--
------------------------------------------------------------------------
Pedro Miguel Frazao Fernandes Ferreira, Universidade do Algarve
U.C.E.H., Campus de Gambelas, 8000 - Faro, Portugal
pfrazao at ualg.pt Tel.:+351 89 800950 / 872959 Fax: +351 89 818560
http://w3.ualg.pt/~pfrazao
More information about the samba-ntdom
mailing list