Re: obtain user's password?
From: Keith W. McCammon (km_at_km.com)
Date: 05/29/03
- Next message: James: "Re: Spooler subsystem app accessing DNS"
- Previous message: Roy Avery: "obtain user's password?"
- In reply to: Roy Avery: "obtain user's password?"
- Next in thread: Roy Avery: "Re: obtain user's password?"
- Reply: Roy Avery: "Re: obtain user's password?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 29 May 2003 12:10:21 -0400
> Our office manager would like a list of all of the domain users passwords.
> Is there a way I can retrieve the passwords?
Only by brute-force. L0phtcrack can do it for $350US. However, you'll need
to run it pretty regularly if you require an up-to-date list, which can be
very time-consuming on larger networks (and even on some smaller networks
with security-conscious users). In general, these things are to be used for
auditing, not for password management, as there's no good reason to need
everyone's password (this is what administrative rights are for).
- Next message: James: "Re: Spooler subsystem app accessing DNS"
- Previous message: Roy Avery: "obtain user's password?"
- In reply to: Roy Avery: "obtain user's password?"
- Next in thread: Roy Avery: "Re: obtain user's password?"
- Reply: Roy Avery: "Re: obtain user's password?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
