Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Windows Kerberos Pre-Authentication (Vista/Win2k8)

  • 06-03-2009 2:44am
    #1
    Closed Accounts Posts: 1,567 ✭✭✭


    After reading about AES now used in kerberos for Vista/Win2k8, i wanted to see how this would affect the attack against PA_ENC_TIMESTAMP.

    for me atleast, using Vista SP1 x64 and Windows 2008 R2 beta, it still used RC4-HMAC for the pre-authentication, although maybe i setup something wrong?

    Maybe it is there for legacy machines but that would mean those authentications are still vulnerable to the old attack.

    Anyone know why it would use RC4-HMAC or how i can enforce the Vista OS to use AES only?

    thinking theres something in registry..

    EDIT: RC4-HMAC was used only used for NET USE command, main logon used AES..nvm


Advertisement