NTLM works at a higher layer then TCP/IP, therefore it would be impossible to ensure there was no man-in-the-middle attack unless the connection becomes encrypted after authentication.
NTLM was simply intended for authentication without compromising the password. IT tech staff should familiarise themselves better with protocol limitations if they thought otherwise.
If you want to make sure your application connected to the correct destination, you should use NTLMv2 over SSL (encrypted connection with destination verified).
The best of ZDNet, delivered
ZDNet Newsletters
Get the best of ZDNet delivered straight to your inbox
