Re: Passthough security fix.

Gerald Carter (cartegw@Eng.Auburn.EDU)
Tue, 21 Apr 1998 08:09:58 -0500

Date:	Tue, 21 Apr 1998 08:09:58 -0500
From:	Gerald Carter <cartegw@Eng.Auburn.EDU>
To:	lkcl@regent.push.net
Subject: Re: Passthough security fix.

Luke Kenneth Casson Leighton wrote:
>
> On Tue, 21 Apr 1998, Andrew Tridgell wrote:
>
> > > how about using "LsaSamLogon" instead?
> >
> > indeed! Jeremy, is that the basis of your proposed security=domain
> > code?
>
> ah... security=domain will use LsaSamLogon with pass-through client-side,
> using what is known as a "network login" - type 2 (i think). an
> "interactive" login is type 1, and is used in the ctrl-alt-delete from an
> nt wksta, for example.

Console logins are type 2 and network logins are type 3. At least this
is what I gathered from the perl scripts I just wrote to implement a
last command I could run remotely on NT boxes.

j-
________________________________________________________________________
Gerald ( Jerry ) Carter
Engineering Network Services Auburn University
jerry@eng.auburn.edu http://www.eng.auburn.edu/users/cartegw

"...a hundred billion castaways looking for a home."
- Sting "Message in a Bottle" ( 1979 )