Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!zaphod.mps.ohio-state.edu!mips!apple!fernwood!portal!cup.portal.com!Jons
From: Jons@cup.portal.com (Jonathan S Spangler)
Newsgroups: comp.sys.novell
Subject: Re: Encrypted Passwords
Message-ID: <40718@cup.portal.com>
Date: 31 Mar 91 08:26:39 GMT
References: <108250@unix.cis.pitt.edu>
  <1991Mar30.004726.19385@vpnet.chi.il.us>
Organization: The Portal System (TM)
Lines: 31

In article <108250@unix.cis.pitt.edu> mjl@unix.cis.pitt.edu (Michael J Lewinter
) writes:
>1) What version of Netware started support of encrypted passwords.
V 3.11 I believe, according to a spokesperson from Novell.
__________________________________________________________
Ken Isacson         Sysop - Board Of Trade BBS  GT 016/001
kji@vpnet.chi.il.us         (815) 753 - 0042
----------------------------------------------------------

People:

Perhaps it is time to define what Novell means by encrypted. Yes, it is
true that passwords were encrypted from v2.1x and up.

However, passwords were *not* encrypted across the wire itself. Therefore,
if you have a Sniffer or other network cable management tool, it was easy to 
to read the password.

Now, with v3.x of NetWare, passwords are encrypted OVER THE LAN CABLE. this
is mostly a security issue, and only really becomes a problem if you need 
to have both 286 and 386 OSes running simultaneously.

The command that needs to go into the AUTOEXEC.NCF file is:

set allow unencrypted passwords = on

Hope this helps someone...

aloha,
Jonathan Spangler
jons@cup.portal.com