re: Win98 and NT4.0 passwords

Martin Grap (mgrap@concord-eracom.de)
Fri, 28 Aug 1998 09:32:24 +0100

• Next message: mlynn@west.raytheon.com: "Re[2]: Win98 and NT4.0 passwords"
• Previous message: Laurent Demailly: "IRC (was Re: Crypto Coding Project)"
• In reply to: Daniel Pittman: "Re: Crypto Coding Project"
• Next in thread: David Jablon: "re: Win98 and NT4.0 passwords"
• Reply: David Jablon: "re: Win98 and NT4.0 passwords"

At 04:02 PM 8/27/98 +0100, you wrote:

> I have been asked to look into how login can work on Win95, Win98,
>NT4.0. My question is on the password on Win98 and perhaps NT4.0. I was
>told that the password is encrypted, and I was wondering if there is a way
>for it to be decrypted.
>
> If there is a good place or book for reference on this that would be
>helpful also.
>

Have a look at

http://www.counterpane.com/pptp-paper.html

This paper describes some weaknesses in Microsofts pptp implementation.
As far as I remember the authors also describe the various protocols
used by Microsoft for client authentication. Another way of getting
information could be the source code of the Samba server. It implements
Microsoft's file and printer sharing on a Linux machine. I think it's
GPL'ed and therefore the source should be freely available.

Martin

--------
Martin Grap, Concord-Eracom Computer Security GmbH
Talstrasse 11, D-72218 Wildberg, Germany
Tel. : {+49} (0)7054-9267-0, Fax: {+49} (0)7054-1837
e-mail: mgrap@concord-eracom.de, CE-homepage: http://www.concord-eracom.de

• Next message: mlynn@west.raytheon.com: "Re[2]: Win98 and NT4.0 passwords"
• Previous message: Laurent Demailly: "IRC (was Re: Crypto Coding Project)"
• In reply to: Daniel Pittman: "Re: Crypto Coding Project"
• Next in thread: David Jablon: "re: Win98 and NT4.0 passwords"
• Reply: David Jablon: "re: Win98 and NT4.0 passwords"