Encrypt This

Encrypt This
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Encrypt This Goofy Duck 09-29-2006
`--> Re: Encrypt This Roger Abell [MV...09-29-2006
Posted by =?Utf-8?B?R29vZnkgRHVjaw==?= on September 29, 2006, 9:03 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
I have two compures and one server at home. When I sign on to the domain, is
my user ID and password encypted or can sometype of sniffer capture them? If
a sniffer can capture the information, how would I encrypt signing into the
domain?

Posted by WB on September 29, 2006, 9:45 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

>I have two compures and one server at home. When I sign on to the domain,
>is
> my user ID and password encypted or can sometype of sniffer capture them?
> If
> a sniffer can capture the information, how would I encrypt signing into
> the
> domain?

FYI the password is not sent across the network, not even in an encrypted
form.

--
woundedback
Please drive safely



Posted by Roger Abell [MVP] on September 29, 2006, 9:57 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
The password that you enter is only sent if you are interacting with
a web interface as your "sign on to the domain" action, and that web
interface is not configured to allow windows integrated authentication.
In that case, make sure the web interface is over SSL (i.e https padlock)
Otherwise, for things like share access, etc. the challenge response
sequence never sends the password, and there are technologies used
to prevent replay of what passes back and forth.

>I have two compures and one server at home. When I sign on to the domain,
>is
> my user ID and password encypted or can sometype of sniffer capture them?
> If
> a sniffer can capture the information, how would I encrypt signing into
> the
> domain?



Similar ThreadsPosted
Best way to Encrypt on streaming files? June 12, 2006, 2:59 pm
Sign and encrypt mail February 21, 2008, 12:31 am
How do I encrypt a whole (external) USB harddisc (under Win2000 and WinXP)? July 11, 2005, 9:13 am
RSA frustrations - encrypt with private, decrypt with public - possible? October 24, 2005, 9:03 pm
Unable to un-encrypt a folder using Windows encryption - access de August 27, 2008, 7:39 pm

The site map in XML format XML site map

Contact Us | Privacy Policy