[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Hack MSN anyone?

To: "'[email protected]'" <[email protected]>
Subject: Re: Hack MSN anyone?
From: Lee Fisher <[email protected]>
Date: Thu, 25 Apr 1996 13:53:48 -0700
Sender: [email protected]

I was curious about the below message, and checked... 

MSN uses CHAP (PPP's challenge-response handshake) for network layer
authetication, and NTLM (Windows NT's challenge-response handshake) for
application-layer authentication. The password is never sent in across
the network. Challenge-responses encrypted with the password are sent.

Lee Fisher

| The names have been changed to protect the innocent...
| I need say no more I'm sure.
|
|| Yes, windows95 dialup networking uses compression to send the
password
|| when connecting. Thanks for using the Microsoft Network
||
||| Problem Description: Microsoft being security conscious and all, I
||| would hope that when I connect to MSN over the Internet, that my MSN
||| client has the decency to ENCRYPT my password when it sends it over
the
||| net,  yes?  This is the first time I couldn't get through to a
dial-up
||| connection and had to access MSN using my ISP.  Having done so, I
find
||| it extrememly convenient, and would like to continue to do so. 
Thanks.

Follow-Ups:
- Re: Hack MSN anyone?
  - From: Rich Graves <[email protected]>

Prev by Date: US law - World Law - Secret Banking
Next by Date: Brock Meeks: "The Encryption Clock"
Prev by thread: Hack MSN anyone?
Next by thread: Re: Hack MSN anyone?
Index(es):
- Date
- Thread