RE: Samba Client using Password Hash

From: Greg (greg@hoobie.net)
Date: 02/27/02 

From: "Greg" <greg@hoobie.net>
To: "helmut schmidt" <helmutsch69@hotmail.com>, <pen-test@securityfocus.com>
Date: Wed, 27 Feb 2002 19:54:06 -0000

http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind9704&L=NTBUGTRAQ&P=R
2734&D=0

This is a patch for an older version of Samba. Will need tweaking to work
with a recent version I spose. Also requires that you appear in passwd and
smbpasswd so you'd have to set up a matching user locally (to match the nt
user you're logging in as.)

cheers

Greg

> -----Original Message-----
> From: helmut schmidt [mailto:helmutsch69@hotmail.com]
> Sent: 27 February 2002 08:58
> To: pen-test@securityfocus.com
> Subject: Samba Client using Password Hash
>
>
> Hi,
>
> I understand that there exists a modified version of the SAMBA smbclient
> that allows the ability to logon to NT from UNIX using only the password
> hash.
>
> I downloaded samba 2.2.3a this morning but I cant find any documentation
> regarding this feature.
>
> Can someone point me to the right smbclient version and some man pages
> explaining how to do it ?
>
> much appreciated. Helmut
>
>
>
>
>
>
> _________________________________________________________________
> Chat with friends online, try MSN Messenger: http://messenger.msn.com
>
>
> ------------------------------------------------------------------
> ----------
> This list is provided by the SecurityFocus Security Intelligence
> Alert (SIA)
> Service. For more information on SecurityFocus' SIA service which
> automatically alerts you to the latest security vulnerabilities
> please see:
> https://alerts.securityfocus.com/
>

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Relevant Pages

  • RE: Using ARP to map a network
    ... On a HUB there would be absolutely no reason to send out ARP replies, ... >> This list is provided by the SecurityFocus Security Intelligence ... For more information on SecurityFocus' SIA service which ... > automatically alerts you to the latest security vulnerabilities please see: ...
    (Pen-Test)
  • RE: Password HTML form bruteforce
    ... print Positive Authentication with Login: ACCOUNT, ... >> This list is provided by the SecurityFocus Security Intelligence ... For more information on SecurityFocus' SIA service which ... automatically alerts you to the latest security vulnerabilities please see: ...
    (Pen-Test)
  • RE: SQL Injection - retrieving all rows
    ... If you can GET responses from a SQL database just invoke the ASP page many ... >> This list is provided by the SecurityFocus Security Intelligence ... For more information on SecurityFocus' SIA service which ... >automatically alerts you to the latest security vulnerabilities please see: ...
    (Pen-Test)
  • Re: Problems on the DOS-Prompt
    ... >Is there a list of all availible commands that can be used on nt and 2k ... >>> This list is provided by the SecurityFocus Security Intelligence ... For more information on SecurityFocus' SIA service which ... >>> automatically alerts you to the latest security vulnerabilities ...
    (Pen-Test)
  • RE: SQL Injection - retrieving all rows
    ... Suppose this is your SQL injection string: ... > This list is provided by the SecurityFocus Security Intelligence ... For more information on SecurityFocus' SIA service which ... automatically alerts you to the latest security vulnerabilities please see: ...
    (Pen-Test)