Password sync

Paul J Collins pjdc at eircom.net
Wed Jul 19 18:02:12 GMT 2000


>>>>> "Simo" == Simo Sorce <simo.sorce at polimi.it> writes:

    Simo> Reading on this list for months convinced me that NT
    Simo> password format is really too unsecure and trivial to crack
    Simo> and this kept me always away from using
    Simo> pam_(ntdom/smb/winbind) to store my unix passwords.

NT's password format is neither insecure nor trivial.  It is a one-way
hash.  So-called "password crackers" work by testing a very large
dictionary against the target password.  They don't decrypt the
password hash itself; such a thing cannot be done.

If your users pick bad passwords, then they can be easily cracked, but
the same is true of Unix passwords.

Paul.

-- 
Paul Collins <pjdc at eircom.net> - - - - - - - [ A&P,a&f ]
 GPG: 0A49 49A9 2932 0EE5 89B2  9EE0 3B65 7154 8131 1BCD
 PGP: 88BA 2393 8E3C CECF E43A  44B4 0766 DD71 04E5 962C
"Where?  Where is the town?  Now it's nothing but flowers!"



More information about the samba-ntdom mailing list