Re: NTLM v2 implementation

From: S.Leyers (s.leyers@subdimension.com)
Date: 12/21/01 

From: "S.Leyers" <s.leyers@subdimension.com>
To: <Thor@HammerofGod.com>, <focus-ms@securityfocus.com>
Date: Fri, 21 Dec 2001 10:49:49 +0100

> When you say "Still see my password," how exactly is it seeing it? From a
> SAM dump or from sniffing SMB off the wire? The implementation of NTLMv2
> doesn't do anything to the SAM- just the transmissions of the hash over
the
> wire...

I'm using pwdump3 to dump the SAM to a file and open it in L0pht to crack
the passwords.

"doesn't do anything to the SAM- just the transmissions of the hash over the
wire..." ...

Sounds that implementing NTLM v2 is pretty useless for the workstations and
their local admin account.
Well it even seems strange to me that whatever i do (implement NTLM v2,
implement password policy to force users to have 7+ characters passwords) my
efforts to secure that part of my network would be rendered useless by the
presence of the SAM (or ntds.dit) and the LM Hash in it.

Beside the considerations over NTLM v2, what I would like to have is usefull
long password. So far I can put a 15 characters password on my admin account
i can find it back through pwdump/L0phtcrack in a matter of hours thanks (?)
to LM Hash ... so far it is pretty scary.

_____________________________________________________________________
This message has been checked for all known viruses by the
MessageLabs Virus Scanning Service. For further information visit
http://www.messagelabs.com/stats.asp

Relevant Pages

  • Re: WinNT and previously used passwords
    ... going to go through the hashes to get the history, ... It just brute forces the hash until it can ... > 10 passwords are achived in the SAM or registry maybe? ... If I remember correctly l0pht crack grabs ...
    (Vuln-Dev)
  • Re: Windows 2K/XP/2K3 password question
    ... "Matt Gibson" wrote in message ... > One way hash. ... I know it is saved in SAM registry? ... >> Windows encrypt a password in one way ...
    (microsoft.public.windows.server.security)
  • Re: Adding a unique user name in a file
    ... Jürgen Exner wrote in comp.lang.perl.misc: ... > sam wrote: ... >> to speed up the search rather than using linear search. ... existing users into a hash looks reasonable. ...
    (comp.lang.perl.misc)
  • Re: Windows 2K/XP/2K3 password question
    ... One way hash. ... You can use tools like dumpsec to dump the SAM. ... > user mode program or kernel mode driver? ... > Windows encrypt a password in one way ...
    (microsoft.public.windows.server.security)
  • Re: And just as I was going to ask my wife out for a meal - spoiler thurs 19th Oct
    ... And didn't Sam dump his previous gf when he started falling for ... I get the impression that Sam is one of those men who lose interest once they've succeeded with a woman but who will then string the relationship along till he's found someone else. ... Quite apart from the relative merits of David and Sam, does she really want to leave the farm? ... She and Sam would be incredibly lucky if they were able to get a matched pair of jobs on another farm. ...
    (uk.media.radio.archers)