Re: Can I programmatically get passwords for user names?

From: Jeff Cochran (jcochran.nospam@naplesgov.com)
Date: 04/04/03 

From: jcochran.nospam@naplesgov.com (Jeff Cochran)
Date: Fri, 04 Apr 2003 14:40:28 GMT

On Thu, 3 Apr 2003 16:07:08 -0800, "Ted Gauthier" <tedg@scshop.com>
wrote:

>For Windows 2000 Server (regular or advanced), if I am
>logged in as Administrator, can I programmatically get the
>passwords for user names?

No. Best you can do is validate a password against the SAM and see if
it's correct.

Jeff

Relevant Pages

  • Re: password security
    ... store local user accounts/ passwords. ... the network would have a SAM for the domain. ... Client so they can authenticate with NTLM V2. ... the hash with a network sniffer and crack it fairly easily. ...
    (microsoft.public.win2000.security)
  • Re: SysKey
    ... pass the decrypted hashes back to the online SAM or DC ... Also there is some Microsoft webcast about this passwords ... >protected with syskey other than default level, ... >ten minutes by first resetting the administrator password ...
    (microsoft.public.win2000.security)
  • SAM Error ID 12294
    ... The SAM database was unable to lockout the account of? ... This all started occuring after we changed all the passwords on the server. ...
    (microsoft.public.windows.server.sbs)
  • Account lockout error
    ... Event Source: SAM ... is in the error data). ... passwords are provided so please consider resetting the password of the ... account mentioned above. ...
    (microsoft.public.win2000.security)
  • PASSWORD HISTORY
    ... Password history is stored in SAM too (after the current ... >where the old passwords were kept. ... >If I set the policy to keep the previous 12 passwords, ... user used: Monday1, ...
    (microsoft.public.security)