Date: Wed, 22 Apr 1998 09:20:30 -0700 From: Jeremy Allison <jallison@whistle.com> To: lkcl@regent.push.net Subject: Re: Machine password encrypted by admin password in SP3?
Luke Kenneth Casson Leighton wrote:
>
> what this does over-the-wire is to open a \PIPE\samr with NTLMSSP
> encryption, and add an LSA_USER_INFO_21 structure with ACB_WKSTRUST, an
> account of MACHINE$ and a random password.
>
It's not random. That's the problem. It's the machine
name in unicode in lower case.
Jeremy.
-- -------------------------------------------------------- Buying an operating system without source is like buying a self-assembly Space Shuttle with no instructions. --------------------------------------------------------