Kaum zu glauben, aber standardmäßig versenden die Windows-Versionen NT, 2000 und XP immer noch die unsicheren Lanman-Passwörter ins Netzwerk. Zusätzlich ist die einzig sinnvolle Option, nämlich die NTLMv2-Authentifizierung zu verwenden, standardmäßig deaktiviert…
Continue reading “Sichere Passwörter in Windows-Netzwerken (ntlmv2)”
I recently did some speed measurements for crypto algorithms with different hardware. The background was to compare the SSL negotation/handshake drawback when switching from 1024 to 2048 bit with RSA and DSA, especially for openvpn.
It shows that even with the oldest hardware (166 MHz Pentium) its affordable in terms of speed to use a 2048 bit RSA key. Note that normally a public key handshake is only done at the beginning of the communication process and then perhaps every hour. With hybrid algorithms the speed of the communication path depends from the symetric cipher.
Imagine you have saved the password for your jabber account in Psi and now you can’t memorize. Fourtunately the encryption of Psi’ config file can be reversed.
Continue reading “Recover lost jabber passwords in Psi’s config files”
$ openssl passwd -1
ssh-keygen -lf /etc/ssh/ssh_host_key.pub
Das funktioniert übrigens auch mit den known_hosts-Dateien.