Great Circle Associates Firewalls
(October 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: Re: NETWARE SECURITY/REMOTE LOGINS
From: Mark_W_Loveless @ smtp . bnr . com
Date: Wed, 30 Oct 96 07:48:30 CST
To: Krauss . SiemensAG @ t-online . de (Dietmar Krauss)
Cc: Firewalls @ GreatCircle . COM 
     >>...
     >>The passwords are stored encrypted on the server, BTW. >
     >>Mark
     >
     >Are you really sure that the _rconsole_ password is stored encrypted 
     >in the memory of the server (in opposit to an user password which is 
     >stored somewhere in the bindery or NDS). I think I read an article 
     >where is was described that by using the system debugger you are able 
     >to read the rconsole password from the server memory right away 
     >(NetWare 3.x and 4.x).
     
     It is possible that this _might_ be true in 3.x, but supposedly in 4.x 
     it uses the exact same encryption routine that is does for regular 
     passwords.
     
     Since you can also use the Supe password to get in one would assume it 
     is being stored encrypted in the bindery somewhere.
     
     >Sorry, but what did you mean with "the last 2600" (I guess some 
     >magazine or digest?).
     
     2600 Magazine had an article on sniffing and getting the rconsole 
     password for 3.x.
     
     Mark
Indexed By Date Previous: Opinions wanted
From: "Jim Alton" <jalton @ toronto . cbc . ca>
Next: Re: Firewalls vs Blocking Sites
From: Todd Graham Lewis <lists @ reflections . mindspring . com>
Indexed By Thread Previous: Re: NETWARE SECURITY/REMOTE LOGINS
From: Krauss . SiemensAG @ t-online . de (Dietmar Krauss)
Next: RE: NETWARE SECURITY/REMOTE LOGINS
From: "Osterwald, Paul" <posterwald @ XLConnect . com>
Google
 
Search Internet Search www.greatcircle.com