Default encrypted passwords

Gerald (Jerry) Carter jerry at
Thu Sep 27 12:11:03 GMT 2001

On Thu, 27 Sep 2001, John E. Malmberg wrote:

> Removing the plain text passwords from an SMB network only eliminates
> the probability that someone could use those same passwords to attack
> other protocols.

Also I should point that NTLMv1 is vunerable to man-in-the-middle
attacks :-)

cheers, jerry
 ---------------------------------------------------------------------              SAMBA Team                          
 --"I never saved anything for the swim back." Ethan Hawk in Gattaca--

More information about the samba-technical mailing list