Openwall Project   /home  Owl  JtR  Pro  crypt  pam_passwdqc  tcb  phpass  scanlogd  popa3d  msulogin  /  Linux  BIND  /  advisories  presentations  /  services  donations  /  wordlists  passwords  /  news  community  lists  wiki  CVSweb  mirrors  signatures
bringing security into open environments
 
Password Recovery Resources on the Net
[<prev] [next>] [<thread-prev] [thread-next>] [month] [year] [list] 
Date: Sat, 03 Feb 2007 08:54:08 +1300
From: Russell Fulton <r.fulton@...kland.ac.nz>
To: john-users@...ts.openwall.com
Subject: Re: Windows Domain Account Cracking



Fowler, Garry R wrote:
>    Just out of curiosity, just what are you "auditing"?
>
>   
Can't speek for Hari :)  but I would love to be able to grab a small
random selection of hashes from our AD (which has around 50,000 entries)
and try and crack them as a check that our mechanisms that purportedly
force users to choose 'good' passwords actually works  (i.e. classic
auditing).  I would also like to check password of the accounts that
have domain privilege and those used to access our critical servers
actually meet the higher standard required by policy.

Russell

-- 
To unsubscribe, e-mail john-users-unsubscribe@...ts.openwall.com and reply
to the automated confirmation request that will be sent to you.

Hosted by DataForce ISP - Powered by Openwall GNU/*/Linux