Toggle navigation
TWText.com
TWText.com
faq
Contact US
Follow US
Steve Syfuhs
SteveSyfuhs
In the spirit of people being wrong on the internet, I wanted to briefly discuss something people rarely get right: the computer account password. Your computer has an account in
Read more
So I joked earlier today that the reason we can't kill NTLM is because folks turn off telemetry. That's false. Mostly.Here's why. There's one sure-fire way to kill NTLM: switch
Read more
There was an internal discussion going on about folks getting too many MFA prompts when they're using RDP. I've danced around this topic quite a bit in past threads, but
Read more
Let's talk Azure AD join and what that means to a Windows device. What's it mean to be joined to something? Back in the early days of the universe PCs
Read more
Okay folks, let's talk Kerberos. Strap in. It'll be a long one.https://twitter.com/SteveSyfuhs/status/1305928453674340352 At it's core Kerberos is an authenticated key agreement protocol based on the Needham-Schroeder protocol.
Read more
A couple weeks ago I created a thread about logging into Windows. Have you ever wondered how that works for things like Remote Desktop?https://twitter.com/SteveSyfuhs/status/1297957799079510018 The first thing the client does
Read more
Have you ever wondered what happens behind the scenes when you type your password into the Windows logon screen and hit enter? I'm waiting for a build to complete, so
Read more
A mini thread: I periodically see folks suggest that to prevent weak passwords you should dump AD and compare the hashes against known bad passwords. DO NOT DO THAT. Let
Read more
