yes this is a really big problem, yet the denial from m$ also states
that it is not and has not
been broken, i too am collecting and have collected information, mostly
from the source or the problem.
as with the netmon expolit, m$ is using a standard md4 one-way hash to
secure the sids, this is not even close to
the level or their so called cryptoapi kit.
more info at
>Kelly Gibbs wrote:
> Anyone familiar with NT SIDS? Apparently it has been cracked and the
> implication of doing so spells another "service-pack" from Microsoft.
> I was given a demonstration on how to change the system registery. It's
> actually fairly easy and bypasses all the protection Microsoft setup. I'll
> be posting my findings on my web page soon. I'm still in the info
> collection process and continuing to pursue this.
com | great spirits have often faced violent
| from mediocre minds. a.e |
From: "Kelly Gibbs" <kgibbs @