FLAW IN WIN2000, NT 4.0 MAKES DOMAINS 'TOO TRUSTING']
David Collier-Brown
davecb at canada.sun.com
Fri Feb 1 06:39:10 GMT 2002
in http://idg.net/ic_797115_1773_1-3921.html, Joris Evers, IDG News
Service, Amsterdam Bureau writes:
| The flaw lies in the trust relationships between network
| domains in Windows 2000 and NT 4.0 environments. The
| trusting domain does not verify that the trusted domain is
| actually authoritative for all the SIDs (security
| identifiers) in the authorization data, allowing an attacker
| to increase his or her access level, Microsoft said.
Which sounds like something we may inadvertantly be emulating...
Anyone conversant with this?
--dave
More information about the samba-technical
mailing list