Password sync
Paul J Collins
pjdc at eircom.net
Wed Jul 19 18:02:12 GMT 2000
>>>>> "Simo" == Simo Sorce <simo.sorce at polimi.it> writes:
Simo> Reading on this list for months convinced me that NT
Simo> password format is really too unsecure and trivial to crack
Simo> and this kept me always away from using
Simo> pam_(ntdom/smb/winbind) to store my unix passwords.
NT's password format is neither insecure nor trivial. It is a one-way
hash. So-called "password crackers" work by testing a very large
dictionary against the target password. They don't decrypt the
password hash itself; such a thing cannot be done.
If your users pick bad passwords, then they can be easily cracked, but
the same is true of Unix passwords.
Paul.
--
Paul Collins <pjdc at eircom.net> - - - - - - - [ A&P,a&f ]
GPG: 0A49 49A9 2932 0EE5 89B2 9EE0 3B65 7154 8131 1BCD
PGP: 88BA 2393 8E3C CECF E43A 44B4 0766 DD71 04E5 962C
"Where? Where is the town? Now it's nothing but flowers!"
More information about the samba-ntdom
mailing list