trying to correctly handle account passwords via ldap
lukeh at padl.com
Tue Mar 28 02:47:30 GMT 2006
>> > DRS uses application-level encryption of secret attributes in addition to
>> > the session encryption provided by the GSS-API. Nonetheless this encryption
>> > is session-specific and is in addition to the OWF obfuscation.
>> And remains on my list of crypto challenges to tackle. :-)
>I think Luke was giving you a hint by the url he posted :-).
Actually, I didn't want to take all the fun away from you Andrew :-)
More information about the samba-technical