Options

MS Enterprise Password Policy Insecurity

wes allenwes allen Member Posts: 540 ■■■■■□□□□□
in Off-Topic
This is 50 minutes of time well spent if you are into security at all, or even more importantly, a windows systems / AD Admin. The short version is the NTLM hash is probably not much, if any, more secure then just plaintext.

DerbyCon 3 0 1301 Cracking Corporate Passwords Exploiting Password Policy Weaknesses Minga Rick Redm - YouTube
· Share on FacebookShare on Twitter

Comments

  • Options
    ShdwmageShdwmage Member Posts: 374
    Great article, I did the whole LinkedIn password check and mine was not one of the ones that was leaked.
    --
    “Hey! Listen!” ~ Navi
    2013: [x] MCTS 70-680
    2014: [x] 22-801 [x] 22-802 [x] CIW Web Foundation Associate
    2015 Goals: [] 70-410
    · Share on FacebookShare on Twitter
Sign In or Register to comment.