Linux Help

Linux Help
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 General Computer Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Linux Help SD 09-27-2006
---> Re: Linux Help Chris Mattern09-28-2006
Posted by SD on September 27, 2006, 7:23 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
I am looking to see if a system accepts null passwds, I know how to do
this in a standard linux environment, but the kicker is users are
authenticating through a Windows platform and within the pam.d file
under system-auth is see /$ISA/pam_unix.so likeauth nullok* Does null
have to be allowed in order for proper authentication through Windows
into Linux????

Any help will be greatly appreciated. Thanks.

SD


Posted by Chris Mattern on September 28, 2006, 10:59 am
If you were  Registered and logged in, you could reply and use other advanced thread options
>I am looking to see if a system accepts null passwds, I know how to do
>this in a standard linux environment, but the kicker is users are
>authenticating through a Windows platform and within the pam.d file
>under system-auth is see /$ISA/pam_unix.so likeauth nullok* Does null
>have to be allowed in order for proper authentication through Windows
>into Linux????
>
>Any help will be greatly appreciated. Thanks.
>
"Hi, I'm looking to hang myself, but I can't quite work out how to
tie the knots. Can somebody help me?"

Null passwords are a horrible, horrible idea that you WILL regret.
Why in the name of Sam Hill do you want to DO this?

--
Christopher Mattern

"Which one you figure tracked us?"
"The ugly one, sir."
"...Could you be more specific?"

Posted by Moe Trin on September 28, 2006, 4:14 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
On Thu, 28 Sep 2006, in the Usenet newsgroup comp.security.misc, in article

>
>>I am looking to see if a system accepts null passwds, I know how to do
>>this in a standard linux environment, but the kicker is users are
>>authenticating through a Windows platform and within the pam.d file
>>under system-auth is see /$ISA/pam_unix.so likeauth nullok* Does null
>>have to be allowed in order for proper authentication through Windows
>>into Linux????

Don't know, because I don't have any windoze boxes - but I REALLY doubt it.
"likeauth nullok" is _probably_ a bad idea. See the PAM documentation.

>"Hi, I'm looking to hang myself, but I can't quite work out how to
>tie the knots. Can somebody help me?"
>
>Null passwords are a horrible, horrible idea that you WILL regret.
>Why in the name of Sam Hill do you want to DO this?

I'm not sure he does - he _might_ be trying to figure out if there are
accounts with null passwords so that they can be disabled.

Old guy

Posted by SD on September 28, 2006, 5:46 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

Chris Mattern wrote:
> >I am looking to see if a system accepts null passwds, I know how to do
> >this in a standard linux environment, but the kicker is users are
> >authenticating through a Windows platform and within the pam.d file
> >under system-auth is see /$ISA/pam_unix.so likeauth nullok* Does null
> >have to be allowed in order for proper authentication through Windows
> >into Linux????
> >
> >Any help will be greatly appreciated. Thanks.
> >
> "Hi, I'm looking to hang myself, but I can't quite work out how to
> tie the knots. Can somebody help me?" <NICE!!!! This is awsome!!! Too Funny
ROFLMAO>
>
> Null passwords are a horrible, horrible idea that you WILL regret.
> Why in the name of Sam Hill do you want to DO this?
>
> --
> Christopher Mattern
>
> "Which one you figure tracked us?"
> "The ugly one, sir."
> "...Could you be more specific?"

Mr. Mattern has it occured to you that I am not looking to accept null
passwords but I am in fact looking to see if a client of mine is?????
I am an auditor, whose Linux skills are obviously a little rusty...
and I'd like some help determining if the above mentioned string
indicates that for systems using a Windows platform to authenticate to
the network which houses a Linux server means that Linux server also
accepts null passwords????


Similar ThreadsPosted
Linux? Which one is the most friendly? May 1, 2005, 3:37 pm
end of linux-nightmares... approachable June 17, 2005, 11:27 am
my linux box is bogged down, could it be a breach? August 5, 2006, 1:38 am
security software for linux and mac July 4, 2007, 1:43 pm
question about hardened linux March 17, 2008, 12:15 pm
Re: Checkpoint FW-1 and linux Freeswan VPN problem March 23, 2004, 3:17 pm
Re: Checkpoint FW-1 and linux Freeswan VPN problem March 23, 2004, 4:06 pm
Linux Sequence Number Generation January 26, 2006, 9:59 am
Should Linux wipe memory more often for better security? February 25, 2008, 5:31 pm
Forgotten SUSE Linux root Password December 28, 2005, 6:37 am

The site map in XML format XML site map

Contact Us | Privacy Policy