Re: [NSE] SMB authentication patch

[David Fifield <david () bamsoftware com>]

On Mon, Oct 13, 2008 at 01:53:55PM -0500, Ron wrote:
> > On Fri, Oct 10, 2008 at 11:12:07AM -0500, Ron wrote:
> > jrandom is an administrator, and I tried with my "david" user name and
> > password with the same results.
>
> Ok, I've spent the day setting up a series of test boxes (every version
> of windows with admin/user level account), so I can figure out what
> different accounts can access. But it seems odd that an administrator
> account would be denied that access remotely, although I wouldn't be
> surprised if there was a setting to disable remote SAMR access, since
> letting anybody access that remotely is asking for trouble.
>
> Is the password for admin and jrandom blank, by any chance? It's
> possible that Windows would deny access with blank passwords.

The password for david is blank. The password for jrandom is "jrandom".
I tried giving david a password, and running the scripts as both david
and jrandom, but the david account never showed up. I don't have an
"admin" user, but there is apparently one named "Administrator".

david is the account I created when I installed. Is it maybe the same as
the "Administrator" account? When I look at the Users tab in the task
manager, david has an ID of 0.

David Fifield

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org