FTP Server Authentication (Windows Embedded CE 6.0)
1/6/2010
Windows Embedded CE uses the Windows NT® LAN Manager protocol (RPC_C_AUTHN_WINNT), which is also known as NTLM, to authenticate callers. This is the default authentication service for communications on Windows NT.
Authentication is sometimes required before you can access resources on the Internet. Authentication for the FTP server can be handled by the WinInet InternetConnect function.
Note
If the FTP server is used without appropriate values set for the user list and domain variables (this is the default setting), the network becomes vulnerable to attacks by unauthorized users. An unauthorized user must only guess the device's password, as it is set in Control Panel, to obtain access to a server. To prevent such an attack, the user name in the user list registry value must be set for each of the servers that are currently running. This registry value is automatically set when the ADMIN password is set through the Web-based network configuration utility. The user will then need to log in with the specified user name and appropriate password to use the server.