Azox

> Thanks for the PR! @azoxlpf do you have a good resource on what these permissions allows you to do? Maybe this should be included in the admin check itself....

> @azoxlpf please check the coding conventions with ruff. VSCode plugin highly recommended if you don't want to use the cli Oh my bad, i’m already using the Ruff VS...

> A few other things: > > * I don't think we should check permissions here. If we check them we should integrate that into the is_admin check as this...

> > > A few other things: > > > ``` > > > * I don't think we should check permissions here. If we check them we should integrate...

> Hey i am not sure if this is the right approach. I don't think adding a bunch of try&except will solve the problem. I think the better solution is...

And yes, an account with ALTER SETTINGS can enable xp_cmdshell but still be unable to actually execute commands through it unless it’s sysadmin (or explicitly configured via proxy).

Hi, Thanks for the report ! A PR has been opened to fix this by adding a permission check before confirming xp_cmdshell enablement

In the description I said that “Kerberos authentication with ldap3 is problematic because it relies on native GSSAPI libraries (libkrb5, etc.).” That statement was wrong. The new helper introduced in...

> Hi, first of all thanks for your work! > > We have discussed switching to ldap3 instead of impackets ldap implementation already internally a while ago and decided to...

> > > Hi, first of all thanks for your work! > > > We have discussed switching to ldap3 instead of impackets ldap implementation already internally a while ago...