[Cvsnt] Re: [jakomail at emss.co.za: Re: User context switch in sshd using RSAAuthentication]
Tony Hoyle
tmh at nothing-on.tv
Sat Dec 15 23:50:23 GMT 2001
Corinna Vinschen wrote:
> They are using a so called `LSA authentication module'. This is what
> I'd like to do by myself and which I actually tried to get more
> information about in the past months. Unfortunately the Microsoft
> documentation on that issue is more or less non-existant and there's
> no sample code available. Besides that, VShell is >= 249 USD and
> apparently not open source.
Personally I wouldn't trust a closed-source authentication module as far
as I could throw it - it's bad enough trying to keep on top of the bugs
in the MS stuff without third party authentication keeping me awake at
nights...
There is nothing to stop cvsnt & cygwin hooking the GetUserName() function with an
API hook - this is documented quite well in MSDN and would mean that all
NT programs which relied on this would return the correct user.
What would be better of course is for someone to reverse-engineer the
GetUserName function and work out *why* it sucks so badly - it might be
possible to fix it somehow.
Tony
_______________________________________________
Cvsnt mailing list
Cvsnt at cvsnt.org
http://www.cvsnt.org/cgi-bin/mailman/listinfo/cvsnt
More information about the cvsnt
mailing list