Talk:NTLM
From Wikipedia, the free encyclopedia
 |
This article is part of WikiProject Microsoft Windows, a WikiProject devoted to maintaining and improving the informative value and quality of Wikipedia's many Microsoft Windows articles. |
| B | This article has been rated as B-Class on the assessment scale. |
| Mid | This article has been rated as mid-importance on WikiProject Microsoft Windows's importance scale. |
I'm happy this was broken out from IWA. Thanks. Ozga 02:22, 27 September 2006 (UTC)
Can someone define what NTLM stands for? Is it an acronym? "NT" Lan Manager?
I think so. But see http://support.microsoft.com/?kbid=239869, where Microsoft calls it Windows NT challenge/response. Ozga 13:23, 5 October 2006 (UTC)
Libertas 17:57, 24 May 2007 (UTC) User Experience: on a "managed" (work environment Windows XP) system, seems to especially be associated with ANONYMOUS LOGIN events (seen in Event Viewer): Event Type: Success Audit Event Source: Security Event Category: (2) Event ID: 540 Date: 2007-05-24 Time: 10:06 AM User: NT AUTHORITY\ANONYMOUS LOGON Computer: [removed] Description: The description for Event ID ( 540 ) in Source ( Security ) cannot be found. The local computer may not have the necessary registry information or message DLL files to display messages from a remote computer. You may be able to use the /AUXSOURCE= flag to retrieve this description; see Help and Support for details. The following information is part of the event: , , (0x0,0x2B0FE), 3, NtLmSsp , NTLM, , {00000000-0000-0000-0000-000000000000}.
[edit] Poor Word Choice?
The two sentences, "Both MS-CHAP v1 and v2 have been cryptanalyzed. However, they continue to be in widespread use," would seem to imply that being crytanalyzed is somehow a bad thing. In this case, I believe what was meant was something more along the lines of, "Cryptanalysis of MS-CHAP v1 and v2 have shown the algorithm is not cryptographically secure, but they nevertheless continue to see widespread use." Any objections to that change? Jouster (whisper) 20:56, 7 June 2007 (UTC)
[edit] Version Numbers
There's a little confusion in the introductory wording over version numbers. "NT LM 0.12" is the version number of the SMB (aka CIFS) protocol, not the version number of NTLM. The SMB protocol negotiation decides what version of SMB will subsequently be spoken, not (directly) what authentication mechanisms will be employed.
Within NT LM 0.12 (which is the version of the protocol introduced with Windows NT back in 1993 or thereabouts) there are then mechanisms for determining the authentication protocols: plaintext password, LM, NTLM, Kerberos, NTLMv2, etc. Some of these auth protocols are also applicable to older versions of SMB, of course.
dave
[edit] Corrections
Please suggest corrections.
210.211.170.42 (talk) 09:49, 27 November 2007 (UTC)
There is no note but you get referred there (MS-CAHPv2 would have less weaknesses then MS-CHAPv1) —Preceding unsigned comment added by 82.92.18.24 (talk) 20:13, 18 February 2008 (UTC)
