No LM Hash - no really
From: Ian Boyd (admin_at_SWIFTPA.NET)
Date: 08/22/04
- Next message: Ian Boyd: "Re: No LM Hash - no really"
- Previous message: DJO: "Re: How to configure URLScan 2.5 to allow .stm files?"
- Next in thread: Ian Boyd: "Re: No LM Hash - no really"
- Reply: Ian Boyd: "Re: No LM Hash - no really"
- Reply: Karl Levinson [x y] mvp: "Re: No LM Hash - no really"
- Reply: Steven L Umbach: "Re: No LM Hash - no really"
- Reply: Ian Boyd: "Re: No LM Hash - no really"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 21 Aug 2004 21:51:14 -0400
How do you REALLY disable the generation of Lan Manager password hashes.
i have set the group policy on the domain controller (Windows 2000), and
added to the domain controller's registry the NoLMHash = 1 DWORD.
Then i go to a workstation and reset the password of my domain account.
i can then go back to the domain controller, dump the AD password hashes. i
then crack it and confirm that the LM Hash exists, and contains my new
password.
So how does one REALLY disable LM Hashes in an Active Directory environment?
- Next message: Ian Boyd: "Re: No LM Hash - no really"
- Previous message: DJO: "Re: How to configure URLScan 2.5 to allow .stm files?"
- Next in thread: Ian Boyd: "Re: No LM Hash - no really"
- Reply: Ian Boyd: "Re: No LM Hash - no really"
- Reply: Karl Levinson [x y] mvp: "Re: No LM Hash - no really"
- Reply: Steven L Umbach: "Re: No LM Hash - no really"
- Reply: Ian Boyd: "Re: No LM Hash - no really"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
