Eskelian | Thu 26-Apr-07 07:50 AM |
Member since 04th Mar 2003
2023 posts
| |
|
#1105, "How hard is it to replace Windows Logon?"
|
Hey,
Just curious if anyone has any domain experience with this. I have to replace Windows logon and Citrix logon with biometric authentication as part of a new product we're producing in conjunction with some of our business partners.
I know you can swap out or hook msgina.dll, how much of a pain in the ass is it? Does it allow you to put in the password? Ideally I'd like user to type in username, then authenticate against a facial/fingerprint/etc template, then we'd do a lookup of their password and put it into the password box.
Someone else suggested we, at a very low level, intercept kerberos tokens, but I don't see that as viable because we can't force key knowledge on other programs. I also don't see an adhoc MITM attack oriented pattern (as I view it), as a staying solution.
|
|
|
How hard is it to replace Windows Logon?
[View all] , Eskelian, Thu 26-Apr-07 07:50 AM
RE: How hard is it to replace Windows Logon?,
Marcus_,
26-Apr-07 09:41 AM, #2
RE: How hard is it to replace Windows Logon?,
Eskelian,
26-Apr-07 09:48 AM, #3
My company recently tried one of these products,
Tac,
26-Apr-07 08:11 AM, #1
RE: My company recently tried one of these products,
Eskelian,
26-Apr-07 10:03 AM, #4
Let me count the ways....,
Tac,
26-Apr-07 10:49 AM, #5
RE: Let me count the ways....,
Eskelian,
26-Apr-07 03:51 PM, #6
Both. Third party stuff was very buggy.,
Tac,
26-Apr-07 04:02 PM, #7
In all fairness,
Tac,
26-Apr-07 04:09 PM, #8
RE: In all fairness,
Eskelian,
26-Apr-07 11:13 PM, #9
Think Gattaca,
Tac,
27-Apr-07 08:30 AM, #10
| |
|