Re: Machine password encrypted by admin password in SP3?

Jeremy Allison (jallison@whistle.com)
Wed, 22 Apr 1998 09:20:30 -0700

Date:	Wed, 22 Apr 1998 09:20:30 -0700
From:	Jeremy Allison <jallison@whistle.com>
To:	lkcl@regent.push.net
Subject: Re: Machine password encrypted by admin password in SP3?

Luke Kenneth Casson Leighton wrote:
>
> what this does over-the-wire is to open a \PIPE\samr with NTLMSSP
> encryption, and add an LSA_USER_INFO_21 structure with ACB_WKSTRUST, an
> account of MACHINE$ and a random password.
>

It's not random. That's the problem. It's the machine
name in unicode in lower case.

Jeremy.

-- 
--------------------------------------------------------
Buying an operating system without source is like buying
a self-assembly Space Shuttle with no instructions.
--------------------------------------------------------