Subject: Re: [netatalk-admins] shared Logins on UNIX/Mac?
From: Jonathan Benson (tech@phoenixmags.com.au)
Date: Tue Aug 11 1998 - 20:00:47 EDT
Michael M Han wrote:
> Previously...
> >Are there any paket sniffers out there already wich grab the
> >AppleShare passwords from the TCP/IP network (or even from the
> >DDP layer?)
>
> This can't be done. MacOS *does* encrypt passwords while they're on
> the wire. It uses what they call RandNum which involves the exchange
> of a random number which is hashed using the password as a key. The
> same passwords will hash the randnum identically. I expect that
> RandNum would be reasonably hard to compromise, though I've never
> really thought very hard about it.
This can in fact be done. I had a user here who had a program that
allowed him to see the passwords people were using to connect to file
shares on the various Macs in here. I forget the details as he was
someone I could trust and has since left.
Jonathan
-- Jonathan Benson B.Eng. (Soft Sys Hon) <tech@phoenixmags.com.au> Systems Administrator, Phoenix Magazines, Phone: +61 3 9696 7200 http://www.phoenixmags.com.au
This archive was generated by hypermail 2b28 : Sat Dec 18 1999 - 16:33:04 EST