|
Posted by RJ on February 9, 2006, 11:36 pm
Please log in for more thread options
Yes, it is that easy. But don't forget, MS, as well as other software/
harware vendors, say physical security is just as important as any other
security precaution.
If you don't / can't limit physical access to your servers, network equipment,
databases and so on... then you are leaving yourself open to intrusion.
Time to start locking the door on the server room... oh, wait, you don't
have a locked door... time to get one.
> Hi all,
> I've noticed on the web that there are numerous "password recovery" tools
> available. It appears to be relatively easy to brute force "replace"
> administrator account's password within minutes.
>
> Now I really hope those recovered passwords are at best only the LOCAL
> Administrator account. What if the server is an AD domain controller, does
> that mean those tools actually could recover a "domain administrator"
> account's password?
>
> Is it that easy for such tools (like locksmith) to replace a domain
> administrator password that I believe resides a highly encrypted "ntds.dit"
> AD db file?
>
> If this password recovery is so easy, that'll spell big trouble for DC at
> some smaller branches that might not be as physically secure as the HQ
> sites. We are currently using Windows Server 2003 SP1 DCs and soon to update
> them with R2.
>
> Looking forward to some reality checks and pointers.
>
> Cheers, and thanks.
>
>
| 
XML Sitemap