I know, that pass the hash is now getting a lot of playtime on windows. and I have heard in a couple of talks that its directly related to SSO part of the OS, and may be part of posix?
is OpenBSD, or BSD in general vulnerable to these style attacks? or just the normal unix dump the password /etc/passwd table for offline attacks sorts of stuff? Thoughts -Nex6 [demime 1.01d removed an attachment of type application/pgp-signature which had a name of signature.asc]
