Help Keep Boards Alive. Support us by going ad free today. See here: https://subscriptions.boards.ie/.
If we do not hit our goal we will be forced to close the site.

Current status: https://keepboardsalive.com/

Annual subs are best for most impact. If you are still undecided on going Ad Free - you can also donate using the Paypal Donate option. All contribution helps. Thank you.

https://www.boards.ie/group/1878-subscribers-forum

Private Group for paid up members of Boards.ie. Join the club.

Windows Kerberos Pre-Authentication (Vista/Win2k8)

Martyr · 2009-03-06 02:44:57

After reading about AES now used in kerberos for Vista/Win2k8, i wanted to see how this would affect the attack against PA_ENC_TIMESTAMP. for me atleast, using Vista SP1 x64 and Windows 2008 R2 beta, it still used RC4-HMAC for the pre-authentication, although maybe i setup something wrong? Maybe it is there for legacy…

06-03-2009 03:44AM

#1

Martyr

Closed Accounts Posts: 1,567 ✭✭✭

Join Date: November 2001

Posts: 1391

After reading about AES now used in kerberos for Vista/Win2k8, i wanted to see how this would affect the attack against PA_ENC_TIMESTAMP.

for me atleast, using Vista SP1 x64 and Windows 2008 R2 beta, it still used RC4-HMAC for the pre-authentication, although maybe i setup something wrong?

Maybe it is there for legacy machines but that would mean those authentications are still vulnerable to the old attack.

Anyone know why it would use RC4-HMAC or how i can enforce the Vista OS to use AES only?

thinking theres something in registry..

EDIT: RC4-HMAC was used only used for NET USE command, main logon used AES..nvm

0