>the delays we are seeing are in the 5-10 second mark - would this be
considered normal ?
Just as you say - NT is a slow method for authentication if you are using
the standard AuthBy NT module. I would suggest you contact Mike or Hugh and
see if you can get the new version of this module. It authenticates by only
checking if the user's password is ok. The old module checks by actually
trying to change the password, and hence is very slow.
> is there any way to extract a list of usernames/passwords from an NT PDC
Unless your users are willing to write down their passwords for you then not
really. You could try grabbing passwords off the wire, or crack the sam
using something like John The Ripper or l0phtcrack. Unless your users have
very simple passwords all these will take too long. A quicker method would
be trojaning one of your network apps, but is it worth the hassle?
>are there any other options that people have used that we could implement ?
1. Install Radiator on a BDC
2. Patch it with the latest AuthBy NT patch
hth,
Ash Kent
Network Security Engineer
United Energy Australia
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
