Re: 'krbPrincipalKey' and 'sambaMungedDial'
Hi all,
On Mon, Mar 25, 2013 at 09:56:27PM +0100, Petter Reinholdtsen wrote:
>
> [Martin Schulte]
> > thank you for your answer.
> > I found a way to get the passwords in cleartext from lenny ldap, thanks
> > to windows, the secures OS ever :-) and his LM-Hash. You can crack this
> > LM-hash using ophcrack (http://en.wikipedia.org/wiki/Ophcrack ), which
> > uses rainbow tables.
>
> Interesting and scary. Even in Debian Edu Squeeze, the user passwords
> are stored in three places in the user LDAP object. Once for Kerberos,
> once for Samba and once for GOsa. We should really try to get rid of
> the last two.
>
For the record, an attempt to "unify" GOsa and Kerberos:
<URL:http://bugs.debian.org/698544>
Best regards,
Andi
Reply to: