Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: LM hashes in a hot-desking environment

from [The Little Prince] Network Security [Permanent Link]
Subject: Re: LM hashes in a hot-desking environment
Date: Sat, 27 May 2006 16:09:46 -0600 (MDT) 

On Sat, 27 May 2006, Ansgar -59cobalt- Wiechers wrote:


On 2006-05-25 feedb4ck@z4ck.org wrote:

Although it is a well known fact that Windows desktops and servers
still use LM Hashes and cache the last ten userids and passwords
locally, just in-case an Active Directory, Domain, or NDS tree are not
available, has anyone thought about the consequences of this issue in
a hot-desking, or flexible working environment?


That's why you use policies to disable use of LM hashes and caching of
passwords in environments like that.



Exactly. You don't do caching on computers that won't ever come off the 
network. i.e. don't do it on desktops. If you have that much of a problem 
with AD being unavailable, you better look more closely at your AD 
architecture.
You may do caching on laptops, and then i'd hope you don't have people 
sharing laptops. If you do, well then, that's another story requiring 
careful consideration, but a little off-topic.

--Tony
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-
Anthony J. Biacco                            Systems/Network Administrator
thelittleprince@asteroid-b612.org             http://www.asteroid-b612.org

        "as I always say, why go Merlot, when you can call a Cab?"
.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-._.-
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [KAPDA::#46] - Nukedit Unauthorized Admin Add, farhadkey
Next by Date:  [Full-disclosure] Backdoor in RelevantKnowledge adware (What are we fighting for?), 3APA3A
Previous by Thread:  Re: LM hashes in a hot-desking environment, Ansgar -59cobalt- Wiechers
Next by Thread:  RE: LM hashes in a hot-desking environment, Roger A. Grimes
Indexes:  [Date] [Thread] [Top] [All Lists]