Encrypted Passwords & Restricting Logon Attempts

Gerald (Jerry) Carter jerry at samba.org
Thu Nov 28 14:15:00 GMT 2002

Hash: SHA1

On Wed, 27 Nov 2002, Jim Morris wrote:

> Now their corporate headquarters has identified this issue (unlimited 
> login attempts allowed) as the primary violation on a recent security 
> audit of the network in this branch office of the company.  I think 
> they have only given the local MIS guy a few days to achieve compliance.
>  From a personal standpoint, 3.0 is soon enough.  For the company
> involved, I think they may end up switching to plaintext passwords as a
> temporary solution.  I've had a conversation with them today, and it
> sounds like the local guys are willing to do that for the
> short-term.....

That's funny!  Switching to plain text passwords to be in compliance with 
a security audit :-)  I'm choking on the irony of it all!

cheers, jerry
 Hewlett-Packard            ------------------------- http://www.hp.com
 SAMBA Team                 ---------------------- http://www.samba.org
 GnuPG Key                  ---- http://www.plainjoe.org/gpg_public.asc
 ISBN 0-672-32269-2         "SAMS Teach Yourself Samba in 24 Hours" 2ed
 "You can never go home again, Oatman, but I guess you can shop there."  
                            --John Cusack - "Grosse Point Blank" (1997)

Version: GnuPG v1.2.0 (GNU/Linux)
Comment: For info see http://quantumlab.net/pine_privacy_guard/


More information about the samba-technical mailing list