[cvsnt] RH Linux ES4 Client recommended protocols?
Tony Hoyle
tony.hoyle at march-hare.com
Fri May 11 15:16:42 BST 2007
Gerhard Fiedler wrote:
> Luigi D. Sandon wrote:
>
>>> I tried hard, but I couldn't find how to disable NTLM v2. Can you please
>> use gpedit.msc. You will find it under computer, Windows settings, security
>> settings.
>
> I thought I had looked there... :)
>
> Is it the "LAN Manager Authentication Level" setting? It was originally
> "Send LM & NTLM responses"; now I set it to "Send NTLMv2 response
> only/refuse LM & NTLM". Does this sound right?
>
That sounds right. Just do it on every machine.
The acid test is to run something like LC5 (if you can find it any more)
across the network and see if it finds a nice list of passwords for
you.. on an NTLMv2 only network it shouldn't be able to find anything.
Tony
More information about the cvsnt
mailing list