Đang chuẩn bị nút TẢI XUỐNG, xin hãy chờ
Tải xuống
Tuổi thọ của LAN Manager Khi tìm được xác thực LAN Manager cho phép trên một cài đặt mới Windows XP, một đồng nghiệp của tác giả đã được nghe nhận xét, "ACK! Tại sao các bạn vẫn còn ở đây? "Một tình cảm lặp lại không có nghi ngờ thông qua nhiều của cộng đồng an ninh. Hỗ trợ tiếp tục của Microsoft để xác thực LAN Manager, | 68 Part I Hacking Fundamentals E Account Policies - _3 Local Policies Ẹ I Ú Audit Policy _j User Rights Assignment _ Security Options E I Public Key Policies E -J Software Restriction Policies IP Security Policies on Loc-F lẻo Network access Shares that can be accessed anonymously las Network access Sharing and security model lor local accounts e Network security Do not store LAN Manager hash value on next password c Network security Force logoff when logon hours expire Network security LAN Manager authentication level ISo Network security LDAP client signing requirements Network lecmity LAN Manager authentication level Properties El E II Local Security Setting I Network security. LAN Manager authentication level Send LM NTLM responses Send LM L NTLM responses Send LM NTLM - use NTLMv2session security If negotiated 7 end NTLM re .pon e only Send NTLMv2 response only Send NTLMv2 response onlyXrefuse LM Send NTLMv2 response only refuse LM NTLM including Ỉ including Ĩ all folders n. hashing the Admm stems obiects e OK I Cancel I Figure 5-2. Changing the LAN Manager Authentication Level in Windows XP and 2003. Under Windows 2000 the setting lacks the Network security prefix. LAN Manager s Longevity Upon finding LAN Manager authentication enabled on a new Windows XP installation a colleague of the author was heard to remark ACK Why are you still here A sentiment echoed no doubt through much of the security community. Microsoft s continued support for LAN Manager authentication finally ending with the dawn of Windows 2003 has no doubt been the subject of many heated debates in Redmond. However when you look at the issue from a product support perspective there s some logic to it. Windows 95 and 98 were very well accepted by the business community. The new interface was deemed more intuitive and the new applications ran faster and more elegantly than under the Windows 3.1 interface. Everyone upgraded and Windows 9x with LAN Manager authentication only became the new .
