Re: Relative Security Provided by Cached Domain Credentials?

From: Joshua Feek (jfeek_at_yahoo.com.au)
Date: 05/08/04

  • Next message: David Carlin: "Virus is getting domain account listing" 
    Date: Sat, 8 May 2004 10:18:39 +0100 (BST)
To: Zack Schiel <ZSchiel@blueandco.com>, focus-ms@securityfocus.com

    triple DES from memory

     --- Zack Schiel <ZSchiel@blueandco.com> wrote: >
    First post from a relatively new subscriber to this
    > list, so forgive me if this has been discussed
    > previously...
    >  
    > On a related note to part of the discussion in the
    > 'Restricting change of local admin' thread, does
    > anyone know of a non-brute force way to break the
    > encryption on cached domain credentials?  Local
    > accounts are easily modified or reset, but I'm not
    > aware of any similar exploits for cached domain
    > credentials.  Given that EFS' effectiveness to
    > secure laptop-stored data in a domain environment
    > lives and dies by the security of the cached
    > credentials, I'm curious to know just *how much*
    > more secure they are.
    >  
    > -Zack-
    >
    >
    >  
    >
    >
    >
    >
    ---------------------------------------------------------------------------
    >
    ---------------------------------------------------------------------------
    >

            
            
                    
    ____________________________________________________________
    Yahoo! Messenger - Communicate instantly..."Ping"
    your friends today! Download Messenger Now
    http://uk.messenger.yahoo.com/download/index.html

    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------

  • Next message: David Carlin: "Virus is getting domain account listing"