lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: Tue, 19 Sep 2006 10:01:37 -0700
From: "Dyke, Tim" <Tim.Dyke@...ksafebc.com>
To: <full-disclosure@...ts.grok.org.uk>
Subject: Re: USB Attacks Going Commercial?

Hi Wolf

Thanks for the USB tip, unfortunately, Rainbow Tables, will not work for
Microsoft Cached Domain passwords, since the Hash is seeded with the
password.
If one can reliably get the cached domain passwords, one can go around
and EFS encrypion by loggin on as the user.

Thanks

Tim

Find out about young workers' safety needs at www.demandsafety.ca



CONFIDENTIALITY DISCLAIMER 

The information contained in this transmission may contain privileged and confidential information of WorkSafeBC - the Workers' Compensation Board. It is intended for review only by the person(s) named above. Dissemination, distribution or duplication of this communication is strictly prohibited by all recipients unless expressly authorized otherwise. If you are not the intended recipient, please contact the sender by reply email and destroy all copies of the original message. Thank you.



Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ