RE: Using non-printable characters in passwords
From: Chris Berry (compjma_at_hotmail.com)
Date: 08/13/03
- Previous message: Jarrod Loidl: "Distinctions in Certification"
- Maybe in reply to: Birl: "Using non-printable characters in passwords"
- Next in thread: Birl: "RE: Using non-printable characters in passwords"
- Reply: Birl: "RE: Using non-printable characters in passwords"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: security-basics@securityfocus.com Date: Tue, 12 Aug 2003 17:57:50 -0700
>From: "dave kleiman" <dave@netmedic.net>
>Not quite;
>
>If you pass the 14 character margin, No LM hash will be stored of the
>password. 14 characters is its limit, so if you enforce a policy of 15 or
>greater you do not have to worry about it.
That's true, but I wouldn't rely on that. It's pretty easy to disable the
storing of the LM hash permanently.
Chris Berry
compjma@hotmail.com
Systems Administrator
JM Associates
"Q: How many software engineers does it take to change a lightbulb ?
A: It can't be done; it's a hardware problem."
_________________________________________________________________
Add photos to your messages with MSN 8. Get 2 months FREE*.
http://join.msn.com/?page=features/featuredemail
---------------------------------------------------------------------------
----------------------------------------------------------------------------
- Previous message: Jarrod Loidl: "Distinctions in Certification"
- Maybe in reply to: Birl: "Using non-printable characters in passwords"
- Next in thread: Birl: "RE: Using non-printable characters in passwords"
- Reply: Birl: "RE: Using non-printable characters in passwords"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
