Re: No LM Hash - no really
From: Ian Boyd (admin_at_SWIFTPA.NET)
Date: 08/22/04
- Next message: Dan Dierking: "logon failure: the user has not been granted the requested...."
- Previous message: Ian Boyd: "No LM Hash - no really"
- In reply to: Ian Boyd: "No LM Hash - no really"
- Next in thread: Miha Pihler: "Re: No LM Hash - no really"
- Reply: Miha Pihler: "Re: No LM Hash - no really"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 21 Aug 2004 21:54:20 -0400
The machine has been rebooted - several times.
"Ian Boyd" <admin@SWIFTPA.NET> wrote in message
news:%23gQTDq%23hEHA.3348@TK2MSFTNGP12.phx.gbl...
> How do you REALLY disable the generation of Lan Manager password hashes.
>
> i have set the group policy on the domain controller (Windows 2000), and
> added to the domain controller's registry the NoLMHash = 1 DWORD.
>
> Then i go to a workstation and reset the password of my domain account.
>
> i can then go back to the domain controller, dump the AD password hashes.
i
> then crack it and confirm that the LM Hash exists, and contains my new
> password.
>
>
> So how does one REALLY disable LM Hashes in an Active Directory
environment?
>
>
- Next message: Dan Dierking: "logon failure: the user has not been granted the requested...."
- Previous message: Ian Boyd: "No LM Hash - no really"
- In reply to: Ian Boyd: "No LM Hash - no really"
- Next in thread: Miha Pihler: "Re: No LM Hash - no really"
- Reply: Miha Pihler: "Re: No LM Hash - no really"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
