Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Basic question

from [Roman L. Daszczyszak II] Network Security [Permanent Link]
Subject: Basic question
Date: Thu, 10 Mar 2005 14:56:52 -0600 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Does anyone have a good reference on the differences between LanMan,
NTLM, NTLMv2 and Kerberos?  Also, is there any restriction on the length
of a password used across a network/LAN for authentication?  I'm aware
in NT/2K/XP/2003 the max length of a password is 127 characters, but am
curious if this is still true for network/domain authentication.

Lastly, I have heard (and would like confirmation/denial) that
authenticating to a domain-based machine from a machine outside the
domain causes an otherwise normally encrypted password to be sent
cleartext when authenticating with an IIS server.  Can anyone point me
to references about this?

Thank you for any information y'all can provide.

Roman
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFCMLSUszjStpsfjf8RAtNLAJsGmQv5p9B1bk7msxzK0zrDkpcSKgCgxEKl
hoC2TjFp71dLF3Regw1c6qA=
=vQB2
-----END PGP SIGNATURE-----

---------------------------------------------------------------------------
---------------------------------------------------------------------------

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Question on IIS servers and reverse lookup, Miroslaw Slawek Chorazy
Next by Date:  Re: Question on IIS servers and reverse lookup, Miroslaw Slawek Chorazy
Previous by Thread:  Question on IIS servers and reverse lookup, Maxime Ducharme
Next by Thread:  RE: Basic question, dave kleiman
Indexes:  [Date] [Thread] [Top] [All Lists]