[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Many passwords

To: peterw@usa.net
Subject: Re: Many passwords
From: Dan Weinreb <dlw@exceloncorp.com>
Date: Wed, 7 Feb 2001 18:38:43 -0500 (EST)
Cc: openldap-general@OpenLDAP.org
In-reply-to: <20010207183203.E12866@usa.net> (message from Peter W on Wed, 7 Feb 2001 18:32:03 -0500)

   Date: Wed, 7 Feb 2001 18:32:03 -0500
   From: Peter W <peterw@usa.net>

   If all the hosts can talk to the LDAP server, then wouldn't you want to use 
   the same password for all of them? Isn't that one of the selling points of 
   stuff like NIS/NDS/ActiveDirectory/LDAP? 

You might not have a choice.  On some systems the administrators make
up the passwords, and you can't change your own password.  (Usually
the theory here is that if allowed, you'll change your password to
something easy and obvious to guess.)

Or, perhaps there's one host that has excellent security, on which you
store valuable secrets, and there's another host with mediocre
security, from which passwords could more easily be stolen.  If you
use the same password, the bad guys can crack the less-secure
computer, and then log in as you on the more-secure computer.

-- Dan

Follow-Ups:
- Re: Many passwords
  - From: "Stephen Carvile" <Stephen.Carvile@trw.com>

References:
- Re: Many passwords
  - From: Peter W <peterw@usa.net>

Prev by Date: Re: Many passwords
Next by Date: Re: Many passwords
Index(es):
- Chronological
- Thread