[Samba] login scripts do not run
rruegner
robert at ruegner.org
Thu Sep 23 21:21:16 GMT 2004
Hi Denis, this is nonsens , if a user wants to break your security he
will do it anyway, win auth is easy enough to be breaked by any user
also in native win setups.
If you want be secure use no windows, i gave advice for the netlogon
problem and wanted help out with the prog cpau which is very usefull
as it can crypt admin account and pass, i dont want to be struggeled in
security.
Cpau is enough crypto to ban a normal user for seeing admin users and
his pass ( which must be cool enough ),
but after all having enough time you will brake any security.
Security is a concept not relate to just one thing,
i.e. if the user can boot the computer from a floopy or a cd he will
find out the local admin account in seconds having the right tools,
so dont feed me with your paranoia stuff
Also any network sniffer and varias other tools may brake in security
anyway i.e man in the middle etc), but this is another discussion.
If you dont like this nice little tool , just let it go and wait for
wonder until windows get secure in the matter nix systems are
Regards
Denis Vlasenko schrieb:
> On Thursday 23 September 2004 19:50, rruegner wrote:
>
>>Hi,
>>no the admin account and pass can be crypted
>>so its usefull stuff
>
>
> How will you prevent user from running this under debugger and sniffing
> password from the program data segment?
> --
> vda
>
More information about the samba
mailing list