Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [NSE] SMB authentication patch

From: Ron <ron () skullsecurity net>
Date: Mon, 13 Oct 2008 13:53:55 -0500
David Fifield wrote:

On Fri, Oct 10, 2008 at 11:12:07AM -0500, Ron wrote:
jrandom is an administrator, and I tried with my "david" user name and
password with the same results.


Ok, I've spent the day setting up a series of test boxes (every version
of windows with admin/user level account), so I can figure out what
different accounts can access. But it seems odd that an administrator
account would be denied that access remotely, although I wouldn't be
surprised if there was a setting to disable remote SAMR access, since
letting anybody access that remotely is asking for trouble.

Is the password for admin and jrandom blank, by any chance? It's
possible that Windows would deny access with blank passwords.


Those are special names that I use for Zenmap internationalization
testing, so they are supposed to be non-ASCII. See
http://seclists.org/nmap-dev/2008/q3/0796.html.

David Fifield

Ah, that's good, then. Do you (or does anybody) know if it's possible to
properly parse that in Lua?


Ron     

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Previous By Date Next
Previous By Thread Next

Current thread: