Re: Effect of "reversible encryption..." on Windows XP.
From: Gordon Fecyk (gordonf_at_pan-am.ca)
Date: 03/10/05
- Next message: Mike C: "Active Directory"
- Previous message: Gordon Fecyk: "Everyone deserves ragging for security holes"
- In reply to: Datta: "Effect of "reversible encryption..." on Windows XP."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 10 Mar 2005 09:12:33 -0600
> I enabled it on my XP box using gpedit.msc and verfied using rsop.msc that
> in the effective settings it is enabled. However, I fond that the password
> hash present in registry is same irrespective of this setting. I also
tried
> creating new users after enabling/disabling the policy to check if the
effect
> is only on new users. I found that it has no effect what so ever on the
way
> passwords are stored internally in registry.
Don't you have to change the password after enabling this policy? Changing
the policy wouldn't have an effect on existing stored passwords, or admins
would have a hard time staying logged on after changing the policy.
-- PGP key (0x0AFA039E): <http://www.pan-am.ca/consulting@pan-am.ca.asc> Prevent problems before they happen and help others avoid bad design. <http://www.pan-am.ca/antiwindowscatalog/>
- Next message: Mike C: "Active Directory"
- Previous message: Gordon Fecyk: "Everyone deserves ragging for security holes"
- In reply to: Datta: "Effect of "reversible encryption..." on Windows XP."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
