|
|
Jim Henderson wrote:
>> Yeah, AD works completely differently to the SAM - even down to using a
>> different hash function IIRC. Good luck with that!
>
> I think it still uses MD4 for NTLM authentication (seems to me that's
> what it was), but you can disable that and it uses something a bit more
> advanced.
I am almost 100% certain that no product before Windows 2000 actually
uses a hash function devised by cryptographers. AFAIK, right up until
Windows NT4, M$ were using their own custom-designed [and horribly weak]
hash functions for passwords. The only reason Windows 2000 and later
don't is that [finally!] they use an industry standard - Kerberos.
--
http://blog.orphi.me.uk/
http://www.zazzle.com/MathematicalOrchid*
Post a reply to this message
|
|