[SGVLUG] A question for the security gurus
Charles N Wyble
charles at thewybles.com
Wed Nov 7 18:06:57 PST 2007
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Emerson, Tom (*IC) wrote:
> The key word here is PROGRAMMATICALLY -- I want to incorporate this into
> a program such that I don't have to require configuration on the part of
> end users or network administrators (and, believe it or not, "all that,
> just to get the user's real name...")
>
> Running nmap, every time a user runs the program, would be a little
> disruptive in an organization the size of time/warner...
>
Sure.
Ok.
I presume you are running this on a client machine of some sort? You
don't mention target platform. Linux? OSX? Windows?
Also language? And yes that matters.
If they are using AD for authentication then the ADSI and WMI is useful
to gather authentication server details.
If Linux then I believe you can do some things with the kerberos and
ldap libraries to enumerate realm info.
Of course someone else mentioned querying the DHCP server. I would query
the local dhcp info vs the server as you most likely don't have access
to the server. But maybe you do?
You asked a fairly open ended question without providing very much
information. Makes it kind of hard to help. :)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
iD8DBQFHMm9AkQPZV56XDBMRAoALAJ4jwwLQVoe/YwBcn0Cf17QhS4R+kwCcCxUX
1d+nHcqJhJfIkpEnMv/O6a4=
=bcM3
-----END PGP SIGNATURE-----
More information about the SGVLUG
mailing list