-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 At some point hitherto, Joseph E. Mainusch hath spake thusly: > It is a little bit crude, and I don't know that I would trust it > 100% in a really security sensitive environment, but it does work.
In a really security-sensitive environment, I wouldn't allow NT domain authentication at all... L0phtcrack will crack about 90% of your NT passwords in about an hour, and will get 99% within a week or so. This can be done by stealing a copy of your SAM database, or by sniffing passwords off the network. With quite a bit of work, you can make this hard to do. Unix systems (usually) make this sort of thing much harder by default. Actually, in a really security-sensitive environment, I wouldn't allow Microsoft products on my network. Their bug-o-the month software is too flawed, by their own VP's admission. But that's me... - -- Derek Martin [EMAIL PROTECTED] - --------------------------------------------- I prefer mail encrypted with PGP/GPG! GnuPG Key ID: 0x81CFE75D Retrieve my public key at http://pgp.mit.edu Learn more about it at http://www.gnupg.org -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE86taCdjdlQoHP510RAi72AJ9hKLBlCcfMR62mEGzeyJ0F/BBaXwCfXYim PMUjakc5tViviJ/DmQjmh7o= =KBLF -----END PGP SIGNATURE----- ***************************************************************** To unsubscribe from this list, send mail to [EMAIL PROTECTED] with the text 'unsubscribe gnhlug' in the message body. *****************************************************************
