Ars Technica

Anybody successfully using NTLMv2 only authentication on a corporate network?

It works fine in test environment. But NTLMcompatibilitylevel=5 (NTLMv2 only) breaks way too many things to be useful in the Real World(tm). Exchange 2000 POP3/IMAP access breaks, PocketPC can't ...
TechRepublic

Understand Windows authentication to improve security

A thorough understanding of Windows' authentication methods will enable you to troubleshoot problems and improve network security. Here's a look at what you need to know. If you’re having problems ...
Ars Technica

Accidentally installed DS Client on Win ME workstation. How can I remove it?

We've been updating the Win9X machines on our network with the Win2K DS Client and then adding the correct registry entries to enable NTLMv2 authentication. Along the way I realized I installed the DS ...
CSOonline

Don’t count on Kerberos to thwart pass-the-hash attacks

Several readers responded to my previous post on pass-the-hash attacks, asking if Kerberos authentication versus LANManager, NTLM, or NTLMv2 was an effective defense. It’s a good question, one that I ...
techtimes

Microsoft Outlook Security Flaw Exposed: NTLM v2 Passwords at Risk

A recently addressed security flaw in Microsoft Outlook has been identified as a significant threat, potentially allowing threat actors to exploit it to gain access to NT LAN Manager (NTLM) v2 hashed ...
TechRepublic

Tech Tip: Lock down systems by disabling LM authentication

and enforcing that policy is useless if you authenticate and locally store easily cracked password files. By default, Windows NT, 2000, and XP locally store legacy LAN Manager (LM) password hashes ...