参考文献:
正文
NTLM有Interactive和Noninteractive两种,Interactive就是用户登录类型的,只有client和DC两个参与者,而Noninteractive则是Client要去连接一个Server。在Microsoft NTLM给出了NTLM的Noninteractive验证过程,有如下7步过程:
1、 (Interactive authentication only) A user accesses a client computer and provides a domain name, user name, and password. The client computes a cryptographic hash of the password and discards the actual password.
2、 The client sends the user name to the server (in plaintext).
3、 The server generates a 16-byte random number, called a challenge or nonce, and sends it to the client.
4、 The client encrypts this challenge with the hash of the user’s password and returns the result to the server. This is called the response.
5、 The server sends the following three items to the domain controller:
* User name
* Challenge sent to the client
* Response received fro