RE: Authentication History Windows
DavidsonBK.Ctr_at_bic.usmc.mil
Date: 10/12/05
- Previous message: Sean Warnock: "RE: Authentication History Windows"
- Maybe in reply to: Bart Seresia: "Authentication History Windows"
- Next in thread: Bart Seresia: "RE: Authentication History Windows"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 12 Oct 2005 13:05:41 -0400 To: <focus-ms@securityfocus.com>
I believe the originally authentication for Win3.11 was LAN Manager as
well as the described information below. Hopefully this helps.
I pulled the below information from Microsoft.
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q239869
You can also go to this site and once loaded scroll down the left side
until you see Windows for Workgroups which has additional information
also Microsoft information.
http://www.microsoft.com/technet/archive/mcis/sscpasc.mspx
So with that said you might want to also research Microsoft Lan Manager.
Historically, Windows NT supports two variants of challenge/response
authentication for network logons:
. LAN Manager (LM) challenge/response
. Windows NT challenge/response (also known as NTLM version 1
challenge/response)
The LM variant allows interoperability with the installed base of
Windows 95, Windows 98, and Windows 98 Second Edition clients and
servers. NTLM provides improved security for connections between Windows
NT clients and servers. Windows NT also supports the NTLM session
security mechanism that provides for message confidentiality
(encryption) and integrity (signing).
Recent improvements in computer hardware and software algorithms have
made these protocols vulnerable to widely published attacks for
obtaining user passwords. In its ongoing efforts to deliver more secure
products to its customers, Microsoft has developed an enhancement,
called NTLM version 2, that significantly improves both the
authentication and session security mechanisms. NTLM 2 has been
available for Windows NT 4.0 since Service Pack 4 (SP4) was released,
and it is supported natively in Windows 2000. You can add NTLM 2 support
to Windows 98 by installing the Active Directory Client Extensions.
After you upgrade all computers that are based on Windows 95, Windows
98, Windows 98 Second Edition, and Windows NT 4.0, you can greatly
improve your organization's security by configuring clients, servers,
and domain controllers to use only NTLM 2 (not LM or NTLM).
r/s
Brian Davidson
-----Original Message-----
From: Bart Seresia [mailto:bart@wsn.be]
Sent: Sunday, October 09, 2005 3:18 PM
To: focus-ms@securityfocus.com
Subject: Authentication History Windows
Hi,
For school I have to make a paper about the history of windows user
authenctication
I can find a lot of information about NTLM and KERBEROS authentication
but
notting about the older methods
So my questions are:
What were the authentication methods pre Win 2000 (win 3.11, win 95, win
98)?
And where can if find detailed technical information about them?
Thanks for anyone who wants to help me.
With kind regards,
Bart Seresia
------------------------------------------------------------------------
--- ------------------------------------------------------------------------ --- --------------------------------------------------------------------------- ---------------------------------------------------------------------------
- Previous message: Sean Warnock: "RE: Authentication History Windows"
- Maybe in reply to: Bart Seresia: "Authentication History Windows"
- Next in thread: Bart Seresia: "RE: Authentication History Windows"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
