Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: security-basics Digest 18 Jun 2003 22:09:15 -0000 Issue 618

From: "Damon McMahon" <inst_karma () hotmail com>
Date: Thu, 19 Jun 2003 12:45:19 +1000
Dennis,
Running windump on a Windows 2000 client and tcpdump on a MacOSX 10.1 client shows the login: and password: transmitted in clear text to a Windows XP telnet server. 

Can you specify any documentation stating NTLM is used?

Thanks in advance,
Damon
The telnet built into Windows 2000 uses NTLMv2 authentication by defalt. While 
this is not 3DES or RC4, it is still not plain text.

Dennis



_________________________________________________________________
Hotmail is now available on Australian mobile phones. Go to http://ninemsn.com.au/mobilecentral/signup.asp 


---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
Find out why, and see how you can get plug-n-play secure remote access in 
about an hour, with no client, server changes, or ongoing maintenance.
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm 
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: