Network Security: Detailed info on RE: Renaming Administrator account

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Focus-Microsoft

[Top] [All Lists]

RE: Renaming Administrator account

from [Laura A. Robinson] Network Security

[Permanent Link]

Subject:	RE: Renaming Administrator account
Date:	Wed, 16 Nov 2005 10:43:26 -0500

Although you can authenticate via SID in some instances 
(specifically on the local machine and via kerberos, which 
uses the SID as the identifier, I think)


Not exactly. While SIDs are resolved and retrieved from AD, the user
credentials and long-term key are generated from the entry or resolution of
UPN + password through a one-way hashing algorithm to produce a fixed-length
result. SIDs don't come into play until the user is identified and retrieved
from AD, and the authentication is based on username, realm (UPN suffix for
the user account) and password (with a lot more goop involved, but you get
my point). I can type more on the subject later if you're interested, but I
have to run right now. :-)

Laura



---------------------------------------------------------------------------
---------------------------------------------------------------------------

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Renaming Administrator account, Derick Anderson Re: Renaming Administrator account, James Eaton-Lee RE: Renaming Administrator account, Laura A. Robinson <= RE: Renaming Administrator account, Gary Everekyan RE: Renaming Administrator account, Beauford, Jason RE: Renaming Administrator account, Depp, Dennis M. RE: Renaming Administrator account, DavidsonBK.Ctr RE: Renaming Administrator account, Laura A. Robinson RE: Renaming Administrator account, Dubber, Drew B RE: Renaming Administrator account, Laura A. Robinson RE: Renaming Administrator account, Dubber, Drew B RE: Renaming Administrator account, Laura A. Robinson RE: Renaming Administrator account, Derick Anderson

Previous by Date:	RE: ISA Server or Firewall Appliance?, Barrie Dempster
Next by Date:	RE: Renaming Administrator account, DavidsonBK.Ctr
Previous by Thread:	Re: Renaming Administrator account, James Eaton-Lee
Next by Thread:	RE: Renaming Administrator account, Gary Everekyan
Indexes:	[Date] [Thread] [Top] [All Lists]