Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Windows EFS and Changing a Local Account Password

from [Thomas D.] Network Security [Permanent Link]
Subject: RE: Windows EFS and Changing a Local Account Password
Date: Sun, 16 Jul 2006 15:36:11 +0200 
Hello,


You are wrong that this is no impact of the user's password. The user's
password is used to create a master symmetric key that is used to
protect the user's EFS asymmetric private key (among other things). If
the administrator resets the user's password, the user will get a new
master symmetric key and no longer be able to decrypt their original EFS
private key.


Oh, you're right! But it isn't a drawback - it is a kind of security:

"The behavior that is described in this article is a security measure taken
to protect the security of the user's private information. A malicious
administrator that can reset a user's password and thereby gain access to
the user's account cannot access encrypted files or authentication materials
without the user's knowledge or permissions."

http://support.microsoft.com/kb/290260/en-us (MORE INFORMATION)


-- 
Thomas D.


---------------------------------------------------------------------------
This list is sponsored by: SensePost

Hacking, like any art, will take years of dedicated study and  
practice to master. We can't teach you to hack. But we can teach you  
what we've learned so far. Our courses are honest, real, technical  
and practical. SensePost willl be at Black Hat Vegas in July. To see  
what we're about, visit us at: 

http://www.sensepost.com/training.html
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  AW: Legendary Hacker Kevin Mitnick on malware and social engineering, Christian . Assfalg
Next by Date:  Re: ADS Password Storage Protection, Eoin Miller
Previous by Thread:  RE: Windows EFS and Changing a Local Account Password, Roger A. Grimes
Next by Thread:  RE: Windows EFS and Changing a Local Account Password, David Gillett
Indexes:  [Date] [Thread] [Top] [All Lists]