topbanner_forum
  *

avatar image

Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
  • Friday March 29, 2024, 5:26 am
  • Proudly celebrating 15+ years online.
  • Donate now to become a lifetime supporting member of the site and get a non-expiring license key for all of our programs.
  • donate

Author Topic: "NTLM 100% Broken Using Hashes Derived From Captures"  (Read 3190 times)

TaoPhoenix

  • Supporting Member
  • Joined in 2011
  • **
  • Posts: 4,642
    • View Profile
    • Donate to Member
"NTLM 100% Broken Using Hashes Derived From Captures"
« on: January 08, 2013, 07:27 PM »
I'll leave this one to my betters:

"NTLM 100% Broken Using Hashes Derived From Captures"
http://it.slashdot.o...erived-from-captures

"Microsoft has posted a little guidance for those who need to turn off NTLM."
http://support.microsoft.com/kb/2793313
Systems that are affected in a default configuration are primarily at risk, such as systems that are running Microsoft Windows NT 4, Windows 2000, Windows XP, and Windows Server 2003. For example, by default, Windows XP and Windows Server 2003 both support NTLMv1 authentication.
To have us fix this problem for you, go to the "Fix it for me" section.

Fix this problem
Microsoft Fix it 50969

------------------

So how serious is this for ordinary home users? If I click "Fix it" will I suddenly lose my Wifi connection?


Stoic Joker

  • Honorary Member
  • Joined in 2008
  • **
  • Posts: 6,646
    • View Profile
    • Donate to Member
Re: "NTLM 100% Broken Using Hashes Derived From Captures"
« Reply #1 on: January 09, 2013, 06:56 AM »
What are the potential risks of enforcing NTLMv2?
All supported versions of the Windows operating system support NTLMv2. Windows NT 4.0 SP6a also supports NTLMv2.
-Microsoft KB2793313

NT Local Machine (NTLM) authentication has nothing to do with your WiFi. It the mechanism used to authenticate Local Machine accounts over the wire. WiFi is just a Layer 1 media connection.

Strange that this is still an issue since forcing NTLMv2 was a recommended configuration for Windows 2000 way back when it was released. It was actually covered in several of the whitepapers then, that (apparently) nobody read.

f0dder

  • Charter Honorary Member
  • Joined in 2005
  • ***
  • Posts: 9,153
  • [Well, THAT escalated quickly!]
    • View Profile
    • f0dder's place
    • Read more about this member.
    • Donate to Member
Re: "NTLM 100% Broken Using Hashes Derived From Captures"
« Reply #2 on: January 09, 2013, 03:57 PM »
How can anything regarding NTLMv1 be considered news? :D
- carpe noctem