Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: LM hashes in a hot-desking environment

from [3APA3A] Network Security [Permanent Link]
Subject: Re: LM hashes in a hot-desking environment
Date: Sat, 27 May 2006 14:27:04 +0400 
Dear feedb4ck@z4ck.org,

--Thursday, May 25, 2006, 5:46:43 PM, you wrote to bugtraq@securityfocus.com:

fzo> Although it is a well known fact that Windows desktops and servers still
fzo> use LM Hashes and cache the last ten userids and passwords locally, just
fzo> in-case an Active Directory, Domain, or NDS tree are not available, has
fzo> anyone thought about the consequences of this issue in a hot-desking, or
fzo> flexible working environment?

Windows  doesn't  cache  passwords.  If I remember correctly, the cached
value  is  actually  MD5  from  NT  key and can not be used directly. LM
hashes     can     be     disabled    through    group    policy,    see
http://support.microsoft.com/?kbid=299656.   Local   SAM  doesn't  store
domain accounts.

fzo> Now, I know what everyone is saying, wait a minute, for PWDUMP to work you
fzo> need to be administrator to the local machine.   But think again, how
fzo> often is this the case?  Many companys only look to restrict network
fzo> access - as restricting local access may cause issues with applications
fzo> which need to access the local drive.

If  your users on shared hosts work with local administrators privileges
- you have no security at all. Forget about about PWDUMP, it's too hard.
Think   about   trojans  and  keyloggers  user  can  install  to  obtain
credentials  of  different  user. Even more: if you have shared computer
and  you  have  no  physical  security,  everyone  can  install hardware
keylogger.

Your problem is you have strange approach to security. Good approach is:

What should I protect?

-- 
~/ZARAZA
http://www.security.nnov.ru/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Critical sql injection in saphplesson 2.0, black-cod3
Next by Date:  Re: LM hashes in a hot-desking environment, Ansgar -59cobalt- Wiechers
Previous by Thread:  LM hashes in a hot-desking environment, feedb4ck
Next by Thread:  Re: LM hashes in a hot-desking environment, Ansgar -59cobalt- Wiechers
Indexes:  [Date] [Thread] [Top] [All Lists]