Re: Where can I find NTLMSSP Spec?

Some terminology to ensure we all talk about the same things..

LANMAN password hash
User password hashed using the LANMAN method (DES)

NT password hash
User password hashed using the NT method (MD5)

LANMAN challenge/response
The LANMAN challenge/response mechanism, based on the LANMAN hash

NTLM challenge/response
The NT challenge/response mechanism. Designed to address some major
security flaws of LANMAN challenge/response algorithm. Based on the
NT hash.

NTLMv2 challenge/response
The improved NT challenge/response mechanism to address some major
security flaws in NTLM challenge/response algorithm. Also based on
the NT hash.

NTLMSSP
The binary message format used by the Microsoft NTLM Security Support
Provider. The Microsoft NTLM SSP supports LANMAN, NTLM and NTLMv2
challenge/response algorithms for password verification, and a wide
variety of protocol options for different identification purposes..

NTLM over HTTP
This is actually NTLMSSP over HTTP. The MS Proprietary authentication
sheme allowing IE to log on automatically to web servers/proxies.
Uses base64 encoded NTLMSSP messages.

MS CHAP
Microsoft variant of CHAP, using NTLM challenge/response

MSCHAPv2
Second version of Microsoft CHAP to address serious security flaw.
Also uses NTLM challenge/response.

Regards
Henrik

On Tuesday 14 May 2002 19:08, Yee Man Chan wrote:
> Thanks for your reply, Henrik. :) I searched the web
> more and find a web page at OpenGroup that describes
> how NTLM works. The page can be found here:
> http://www.opengroup.org/comsource/techref2/NCH1222X.HTM
>
> It is not really a complete spec but it does give me a
> better understanding of how it works.
>
> Now I got a question for you NT wizards: how do I
> obtain the 16 bytes LanMan password to calculate the
> response to a NTLM challenge? Is it the same as my
> login password in the format of NULL-terminated ASCII
> string? If not, how can I get it?
>
> Thanks in advance.
> Yee Man
Received on Wed May 15 2002 - 03:57:57 MDT