trying to correctly handle account passwords via ldap
simo
idra at samba.org
Tue Mar 28 01:40:45 GMT 2006
On Tue, 2006-03-28 at 11:27 +1000, Luke Howard wrote:
> >> http://www.insecure.org/sploits/WinNT.passwordhashes.deobfuscation.html
> >
> >gahh, I thought something new was used ... :-)
>
> There is an extra layer of encryption at the DRS layer.
You mean they are stored with the old format but wrapped into something
else when queried through DRS ?
I assume the old format is used for compatibility in domain set in
mixed-mode.
Why then use a different format in DRS ?
Simo.
--
Simo Sorce
Samba Team GPL Compliance Officer
email: idra at samba.org
http://samba.org
More information about the samba-technical
mailing list