mirror of
https://github.com/carlospolop/hacktricks
synced 2024-11-22 04:33:28 +00:00
Update kerberoast.md
Added rdate as an additional option for the NTP Clock Skew sync with a DC. ntpdate is deprecated/not included as of ubuntu 16.04.
This commit is contained in:
parent
5850e04a1f
commit
e51f4b2682
1 changed files with 3 additions and 1 deletions
|
@ -129,7 +129,9 @@ If you have **enough permissions** over a user you can **make it kerberoastable*
|
||||||
|
|
||||||
You can find useful **tools** for **kerberoast** attacks here: [https://github.com/nidem/kerberoast](https://github.com/nidem/kerberoast)
|
You can find useful **tools** for **kerberoast** attacks here: [https://github.com/nidem/kerberoast](https://github.com/nidem/kerberoast)
|
||||||
|
|
||||||
If you find this **error** from Linux: **`Kerberos SessionError: KRB_AP_ERR_SKEW(Clock skew too great)`** it because of your local time, you need to synchronise the host with the DC: `ntpdate <IP of DC>`
|
If you find this **error** from Linux: **`Kerberos SessionError: KRB_AP_ERR_SKEW(Clock skew too great)`** it because of your local time, you need to synchronise the host with the DC. There are a few options:
|
||||||
|
- `ntpdate <IP of DC>` - Deprecated as of Ubuntu 16.04
|
||||||
|
- `rdate -n <IP of DC>`
|
||||||
|
|
||||||
### Mitigation
|
### Mitigation
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue