[Samba] FWD: Letters Only LM Hash Database
Robert Moskowitz
rgm at htt-consult.com
Tue Nov 2 20:20:01 GMT 2004
http://it.slashdot.org/article.pl?sid=04/11/02/1523212&tid=93
<mailto:clark at hushmail.com>Peter<mailto:clark at hushmail.com> Clark writes
"Disk storage has increased tremendously in the past 5 years and the
blatant insecurities in the antiquated LM hashing technique have not gone
away; though functionality has been added to disable LM hashes, this is not
set by default. With some help from Elcomsoft, simple flat files have been
created that hold
<http://www.beginningtoseethelight.org/ntsecurity/index.php#0FEB224E21024B8C>every
combination of LM hash for letters only passwords. Jesko has coded a server
application which allows you to access this database. Simply telnet to:
beginningtoseethelight.no-ip.org on port 2501 and paste in a LM hash. So
how does this differ from Rainbow tables? Well this will return a password
100% of the time, using minimal processor power, in approximately less than
0.2 seconds."
More information about the samba
mailing list