Re: Potential vulnerabilities of the Microsoft RVP-based Instant Messaging
From: Russ (Russ.Cooper@RC.ON.CA)Date: 03/20/02
- Previous message: Greg Corey: "Re: Potential vulnerabilities of the Microsoft RVP-based Instant Messaging"
- Maybe in reply to: Dimitrios Petropoulos: "Potential vulnerabilities of the Microsoft RVP-based Instant Messaging"
- Next in thread: Dimitrios Petropoulos: "Re: Potential vulnerabilities of the Microsoft RVP-based Instant Messaging"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 20 Mar 2002 10:48:52 -0500 From: Russ <Russ.Cooper@RC.ON.CA> To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
Further to Greg's comments about this Encode Security Labs analysis of
MS Instant Messaging, a couple of things seem not to be pointed out in
the analysis.
1. Exchange Server 2000 Instant Messaging supports the use of NTLM for
authentication, as opposed to the Digest Authentication described and
used in the analysis. The use of NTLM significantly alters the analysis,
since it addresses man-in-the-middle attacks, unilateral authentication,
and data origin authentication.
2. Confidentiality is still an issue when NTLM is used, but that's
simply because the protocol is a plaintext protocol.
3. Ad hoc communications with untrusted Internet-based IM clients can be
restricted, so if that's a concern, it can be addressed.
Cheers,
Russ - NTBugtraq Editor
- Previous message: Greg Corey: "Re: Potential vulnerabilities of the Microsoft RVP-based Instant Messaging"
- Maybe in reply to: Dimitrios Petropoulos: "Potential vulnerabilities of the Microsoft RVP-based Instant Messaging"
- Next in thread: Dimitrios Petropoulos: "Re: Potential vulnerabilities of the Microsoft RVP-based Instant Messaging"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
