Password Synchronization
Luke Kenneth Casson Leighton
lkcl at switchboard.net
Sat Dec 27 16:51:55 GMT 1997
> You don't see what he is suggesting:
>
> In order to make it possible to authenticate an NT encrypted passwd against
> the Unix passwd database you don't actually need to store the NT encrypted
> passwd, you can simply encrypt the (already) NT encrypted password and
> compare this against the Unix password file, ie you alter login to do:
>
> text passwd -> NT encrypted passwd -> unix encrypted ( NT encrypted passwd)
>
> and then compare this value with the password file
>
> This would remove the problem of NT passwords being too easy to decrypt and
> still give you the possibility of validating NT encrypted passwords.
... and unfortunately, it still doesn't work. i'm trying to think of
something whereby you could verify against unix or nt, with a minimum of
fuss, and with minimum modifications to clients (i.e none).
servers are easy :-)
lukes
More information about the samba
mailing list