Displaying 5 results from an estimated 5 matches for "badhat".
Did you mean:
radhat
2017 Nov 11
4
how safe is "net use" in a batch file? plus some encryption questions
...er is, but they really should find a more
> up to date way of doing things.
That's why we talk and discuss these issues.
> Cannot help you with encryption, I don't use it. However I feel that I
> should point out that the rest of the system seems to be so insecure,
> that if a badhat does get in, they will problem get the encryption keys
> as well.
oh, come on, it's not that bad ;-)
greets, Stefan
2017 Nov 11
1
how safe is "net use" in a batch file? plus some encryption questions
...> I thought "net use" will use ntlm for auth (no clear-text passwords
> passing over the wire). At least that's what I see in wireshark on
> modern windows.
>
If you use NTLMv1, you might as well use plain passwords. Given the
NTLMv1 password, it would take your average badhat about half an hour
to have the plain password.
>
> Unless your XP systems are air-gapped, it is that bad ;-)
>
> I know that in some cases it's impractical to upgrade Windows
> versions. For instance, I helped a man once who had a machine shop /
> small business. His CNC mi...
2017 Nov 11
2
how safe is "net use" in a batch file? plus some encryption questions
A customer asked me if someone would be able to sniff (wireshark or
something like that) a password if plugging into the same switch as
their samba server.
They use a desktop icon pointing at a plain old bat-file containing a
"net use" command with the password right in there.
I *assume* that the "net use" authenticates via encrypted communication?
could someone confirm
2017 Nov 11
0
how safe is "net use" in a batch file? plus some encryption questions
...just place a container like Truecrypt or
> Veracrypt inside a Samba-share? Any thoughts or recommendations here,
> best practices ... ?
Cannot help you with encryption, I don't use it. However I feel that I
should point out that the rest of the system seems to be so insecure,
that if a badhat does get in, they will problem get the encryption keys
as well.
Rowland
2017 Nov 11
0
how safe is "net use" in a batch file? plus some encryption questions
...d a more
> > up to date way of doing things.
>
> That's why we talk and discuss these issues.
>
> > Cannot help you with encryption, I don't use it. However I feel that I
> > should point out that the rest of the system seems to be so insecure,
> > that if a badhat does get in, they will problem get the encryption keys
> > as well.
>
> oh, come on, it's not that bad ;-)
> greets, Stefan
>
Unless your XP systems are air-gapped, it is that bad ;-)
I know that in some cases it's impractical to upgrade Windows versions. For
instance, I...