Do you have an example of this?<div><br></div><div>I presume this is going to be the case for "common" passwords like "love", "secret" and "god" etc...<br><br><div class="gmail_quote">
On 5 September 2011 10:42, Julia Freeman <span dir="ltr"><<a href="mailto:klug@quixotic.org.uk">klug@quixotic.org.uk</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
-----BEGIN PGP SIGNED MESSAGE-----<br>
Hash: SHA1<br>
<div class="im"><br>
On Mon, Sep 05, 2011 at 10:33:26AM +0100, David Halliday wrote:<br>
> One thought. If security is a concern this is potentially dangerous. A<br>
> common way to exploit authentication on windows AD networks is that the<br>
> client computer remember the last<br>
> 10 user-names/passwords successfully authenticated. This is useful to<br>
> authenticate people when network availability is unreliable. However if you<br>
> are in a public environment or there is a chance that someone might be<br>
> interested in exploiting the network then having physical access to a<br>
> machine which stores user-names/passwords is a big<br>
> security vulnerability, especially if a network admin was one of the last 10<br>
> people to access that machine. This is a very common mechanism used to<br>
> exploit MS based networks.<br>
><br>
> From a security mindset, once a person has physical access to a machine that<br>
> machine is easily compromised (and anything on it can and will be used<br>
> against you). One live CD, FTP location to copy the shadow file to, jack the<br>
> ripper (and time & CPU cycles) and you are open wide.<br>
><br>
<br>
</div>Increasingly these days you can actually crack a password quicker by just<br>
googling the hash from the shadow file...<br>
<br>
It's kinda worrying...<br>
<br>
J<br>
-----BEGIN PGP SIGNATURE-----<br>
Version: GnuPG v1.2.4 (GNU/Linux)<br>
<br>
iD8DBQFOZJlx42M0lILkmGIRAhm5AJ90Ecam8fu/4ywhwJ4BOlVKCdczjwCgrgRZ<br>
klM5KAkF2aCutqQ4DVblvZE=<br>
=XVZK<br>
-----END PGP SIGNATURE-----<br>
<div><div></div><div class="h5"><br>
_______________________________________________<br>
Kent mailing list<br>
<a href="mailto:Kent@mailman.lug.org.uk">Kent@mailman.lug.org.uk</a><br>
<a href="https://mailman.lug.org.uk/mailman/listinfo/kent" target="_blank">https://mailman.lug.org.uk/mailman/listinfo/kent</a><br>
</div></div></blockquote></div><br></div>