hash - Hashed format in windows 7 or above -
i need find materials how security accounts manager(sam) works in windows 7+. confused storage format of hashed value.
many materials (such as, 1) tells me uses ntlm(or ntlm v2). however, far understand, security level of ntlm low. os(such unix) provide random salt
enhance basic security level. ntml, can break brute force
in several days(even several hours great device). also, if use rainbow table
, can achieve perfect result.
some other materials (such as, 2) tells me windows vista or above has replaced ntlm kerberos. affect sam? if so, in default, hash algorithm use in windows 7 or above?
to make question clearly, want list them below.
does ntlm or ntlmv2 use salt?
which algorithm windows 7 or windows 8 use sam?
whether kerberos affects hashed format of sam?
1) algorithms lm, ntlm , ntlmv2 session security can find at: http://davenport.sourceforge.net/ntlm.html.
2) protocol chosen depends on configuration (http://technet.microsoft.com/en-us/library/cc738867%28v=ws.10%29.aspx). it's set highest level: send ntlmv2 response only\refuse lm & ntlm.
3) no. there's no correlation or dependence between lm/ntlm/ntlmv2 session security , kerberos. they're different protocols, independent each other.
Comments
Post a Comment