Security/Dollar Ticket Attack
From SambaWiki
The "Dollar Ticket Attack" / Name confusion in Kerberos
This page attempts to document the "Dollar Ticket Attack" on Active Directory servers and clients.
There are many other security issues, some related, that come form the same tree, including:
CVEs and Announcements of the Nov 2021 issues
Talks
- Kawaiicon: Live stream replay @ Youtube PDF without embedded video (shorter, more focus on the remaining still open issues)
Blogs
- Stay Curious: Lessons from the Dollar-ticket security issue
- Catalyst Samba team fixes critical Microsoft security issue