Hello,
Does requiring MS Login/Password make the system more secure over the mere password requirement?
Thanks
Security
9 posts
• Page 1 of 1
What kind of security
by Marscha » 2004-05-18 08:38
I think it depends on what you mean with security.
In my case we have a closed network, but we don't want to have 1 identical password on 10,000 machines
So I think it increases security to use MS logon because we can limit access to machines with domain groups to certain users
.
In my case we have a closed network, but we don't want to have 1 identical password on 10,000 machines
So I think it increases security to use MS logon because we can limit access to machines with domain groups to certain users
.- Marscha
- Former moderator
- Posts: 471
- Joined: 2004-05-14 06:48
Packet capture
by Leonard » 2004-05-18 12:16
All it takes is one person downloading one application and then they can capture IDs and passwords even on switched networks.
This is reality not make beleive. I won't disclose the application, but if you know how to search the internet It's not hard to find.
This is reality not make beleive. I won't disclose the application, but if you know how to search the internet It's not hard to find.
- Leonard
Thanks
by GUest » 2004-05-18 19:24
Thanks to all for reply.
I am in a process of setting up the plugins. (Have not done that yet because I am still trying to tweak the workings).
What I gather is then that the security reamins the same with or without login id/password vrs vnc password. It is just that the level of complexity for each station increases with haveing to know the login id and password for each station.
I am in a process of setting up the plugins. (Have not done that yet because I am still trying to tweak the workings).
What I gather is then that the security reamins the same with or without login id/password vrs vnc password. It is just that the level of complexity for each station increases with haveing to know the login id and password for each station.
- GUest
by Rudi De Vos » 2004-05-18 21:05
MS logon does not add any security.
But grand access based on the MS user account database.
+All local admins (or equivalant) have access..
+You can allow access to users of local or domain groups
When you disable vnc logon, you can handle the access from the central domain controler.
Add/remove access to users is just adding or removing a user from a group.
But grand access based on the MS user account database.
+All local admins (or equivalant) have access..
+You can allow access to users of local or domain groups
When you disable vnc logon, you can handle the access from the central domain controler.
Add/remove access to users is just adding or removing a user from a group.
- Rudi De Vos
- Admin & Developer
- Posts: 3544
- Joined: 2004-04-23 10:21
by Marscha » 2004-05-19 07:27
Control access from the central domain controller only works with one (1) domain.
We have an Active Directory tree with ~ 30 domains. As a user in the Germany Domain I cannot get access to a machine in the Finland Domain.
Would be great if the MS logon functionality could be enhanced to allow this
Should be similar to mapping e.g. a share in another domain, just specify the domain of the user or use the "domain\user" notation.
We have an Active Directory tree with ~ 30 domains. As a user in the Germany Domain I cannot get access to a machine in the Finland Domain.
Would be great if the MS logon functionality could be enhanced to allow this
Should be similar to mapping e.g. a share in another domain, just specify the domain of the user or use the "domain\user" notation.
- Marscha
- Former moderator
- Posts: 471
- Joined: 2004-05-14 06:48
by Guest » 2004-05-19 08:04
But then, when you setup your own server with domain (mydomain) and create a user in the access group....
Verifying against your domain server should give you access to all machines..no security.
There need to be a method that works on NT4 and AD domains..
Didn't find the trick to do it.
Possible it will only be secure on a AD domain and using the
AA.bb.cc name convention. Not that easy to setup and test
on a home network...
Rudi
Verifying against your domain server should give you access to all machines..no security.
There need to be a method that works on NT4 and AD domains..
Didn't find the trick to do it.
Possible it will only be secure on a AD domain and using the
AA.bb.cc name convention. Not that easy to setup and test
on a home network...
Rudi
- Guest
9 posts
• Page 1 of 1
Who is online
Users browsing this forum: Google [Bot] and 0 guests