[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Unix auth via LDAP & now need to add Samba!

> HPC nor HPS ever appears on the wire, so where did the attacker get it?
> He can't calculate it unless he knows the password.

He got it off the server's password file. This is the whole point of
storing hased passwords! Even if someone can read your password file (e.g.
/etc/passwd or /etc/shadow in unix), he can't use that knowledge to log
into your servers.

Scorce for defense in depth -- Microsoft: 0, Unix: 1.