|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Windows NT 4.0 and C2 - New certs
Subject: Re: Windows NT 4.0 and C2 - New certs
From: Anonymous Anonymous (drpeterson
LBL.GOV)
Date: Fri Dec 03 1999 - 14:19:06 CST
- Next message: Liebig, Ed: "Re: Windows NT 4.0 and C2 - New certs"
- Previous message: Kevin_E_WetzelNOTES.TCS.TREAS.GOV: "Re: Windows NT 4.0 and C2 - New certs"
- Maybe in reply to: Steve: "Windows NT 4.0 and C2 - New certs"
- Next in thread: Liebig, Ed: "Re: Windows NT 4.0 and C2 - New certs"
- Maybe reply: Anonymous Anonymous: "Re: Windows NT 4.0 and C2 - New certs"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Kevin,
I would like to see the plane text authentication packets, originating from
another NT box, were both systems c2 secured. Even if not c2 secured they
don't send the password in "plain text" that is to say ASCII, it's hashed,
I'll be it, breakable, but still not plain text.
I would assume that with c2 security the server will not allow plaintext
passwords.
HKLM\System\CurrentControlSet\RDR\Parameters\EnablePlainTextPasswords
REG_DWORD=0
Keep in mind that c2 security does not mean "out of the box" configuration.
You would have to "secure it" to some standard configuration and have it
certified in order to be c2 secured.
-- Dan-----Original Message----- From: Kevin_E_Wetzel
This seems strange to me since no government agency in sound judgement would put anything above sensitive on a Microsoft platform. I would like ask a question and see if anyone could provide some feedback on this topic. First of all it was previously stated that NT Server was not C2 certified unless it was disconnected from the network. This recent information appears to say that NT is C2 certified when connected to the network. I would love to show you all the plain text authentication packets that are sent over a network using this OS and then ask if you still think its C2 secure. Any comments would be welcomed.
Kevin Wetzel
Steve <steve
Please respond to "Discussion regarding Windows-related security vulnerabilities and risks." <win2ksecadvice
To: win2ksecadvice
Microsoft announced today that they recieved C2 certification on 6 new configurations of Windows NT 4.0.
The configurations are:
* Server operating as a primary domain controller * Server operating as a backup domain controller * Server operating as a member server * Server operating as a non-member server * Workstation as a domain member * Workstation as a non-domain member
Check out the following MS url.
http://www.microsoft.com/security/issues/c2summary.asp
Regards;
Steve Manzuik Moderator Win2K Security Advice
_____________________________________________________________________ ** TO UNSUBSCRIBE, send the command "UNSUBSCRIBE win2ksecadvice" ** FOR A WEEKLY DIGEST, send the command "SET win2ksecadvice DIGEST" SEND ALL COMMANDS TO: listserv
_____________________________________________________________________ ** TO UNSUBSCRIBE, send the command "UNSUBSCRIBE win2ksecadvice" ** FOR A WEEKLY DIGEST, send the command "SET win2ksecadvice DIGEST" SEND ALL COMMANDS TO: listserv
_____________________________________________________________________ ** TO UNSUBSCRIBE, send the command "UNSUBSCRIBE win2ksecadvice" ** FOR A WEEKLY DIGEST, send the command "SET win2ksecadvice DIGEST" SEND ALL COMMANDS TO: listserv
- Next message: Liebig, Ed: "Re: Windows NT 4.0 and C2 - New certs"
- Previous message: Kevin_E_WetzelNOTES.TCS.TREAS.GOV: "Re: Windows NT 4.0 and C2 - New certs"
- Maybe in reply to: Steve: "Windows NT 4.0 and C2 - New certs"
- Next in thread: Liebig, Ed: "Re: Windows NT 4.0 and C2 - New certs"
- Maybe reply: Anonymous Anonymous: "Re: Windows NT 4.0 and C2 - New certs"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
This archive was generated by hypermail 2b27 : Fri Dec 03 1999 - 14:32:52 CST