[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: password hash

To: Ilia Chipitsine <ilia@paramon.ru>
Subject: Re: password hash
From: Andrew Bartlett <abartlet@samba.org>
Date: Fri, 25 Mar 2005 20:27:47 +1100
Cc: Jürgen Tabert bei Strato <JTabert@htgreenline.de>, heimdal <heimdal-discuss@sics.se>
In-Reply-To: <20050323192302.O19937@office.paramon.ru>
References: <BE672BDD.5BB6%JTabert@htgreenline.de> <20050323192302.O19937@office.paramon.ru>
Sender: owner-heimdal-discuss@sics.se

This discussion is kind of missing the point, which is that if the
cleartext password is obtained by some 'password quality plugin' or
other sync mech on the AD server, then the easy way to set it into
Heimdal is via the 'password set' exop and the smbk5pwd module in
OpenLDAP (from Howard Chu).

On Wed, 2005-03-23 at 19:28 +0500, Ilia Chipitsine wrote:

> 4) you can use pwdump, pwdump2, pwdump3 for reading NT/LM hashes. even in 
> AD case. no idea how to store them back :-(

For the record, 'net rpc samdump' from Samba3 will also return the
passwords, by joining the domain as a BDC.

Andrew Bartlett

-- 
Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Student Network Administrator, Hawker College  http://hawkerc.net

This is a digitally signed message part

References:
- password hash
  - From: Jürgen Tabert bei Strato <JTabert@htgreenline.de>
- Re: password hash
  - From: Ilia Chipitsine <ilia@paramon.ru>

Prev by Date: Re: password hash
Next by Date: Re: kadmin.8 patch
Prev by thread: Re: password hash
Next by thread: Re: Cybersafe To Heimdal Transition
Index(es):
- Date
- Thread