RE: NT4, IPC$, and password hashes
From: Nathan (nathan.grandbois@cerdant.com)Date: 07/29/02
- Previous message: eick.jac: "PGP alternative to XP"
- In reply to: RUSSELL T. LEWIS: "NT4, IPC$, and password hashes"
- Next in thread: Mark L. Jackson: "RE: NT4, IPC$, and password hashes"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Nathan" <nathan.grandbois@cerdant.com> To: "'RUSSELL T. LEWIS'" <RUSSELL_T._LEWIS@spectralresponse.com>, <security-basics@securityfocus.com> Date: Mon, 29 Jul 2002 09:13:19 -0400
Check to see if the default share is open. Close it and c$ will go away.
Nathan Grandbois
www.cerdant.com
-----Original Message-----
From: RUSSELL T. LEWIS [mailto:RUSSELL_T._LEWIS@spectralresponse.com]
Sent: Thursday, July 25, 2002 3:17 PM
To: security-basics@securityfocus.com
Subject: NT4, IPC$, and password hashes
I've got an NT 4 SP6a Workstation that I'm hardening and I've patched it all
the
way with HFNETCHK, and done ton of registry hacks, turned off services, etc.
However, if I type \\COMPUTERNAME on my network I can get a IPC$ and
LoftCrack3
can extract the password hash, which I've already cracked the lanman hash.
The
crack DID take forever (17days 5hrs 27min) on a p4 2.53GHz over clocked to
2.75
GHz, but I don't like the fact that the hash can be obtained.
How do I prevent LC3, or anyone from getting the password hash?
I did a few registry entries that were supposed to restrict remote registry,
but
it seems that didn't work, or isn't enough.
Thanks for any help!
-Russell
- Previous message: eick.jac: "PGP alternative to XP"
- In reply to: RUSSELL T. LEWIS: "NT4, IPC$, and password hashes"
- Next in thread: Mark L. Jackson: "RE: NT4, IPC$, and password hashes"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
