Reply to post:

Chinese gang shoots down aerospace security with MSFT flaws

TheVogon Silver badge

"That's a different issue. Reversing encryption and hash cracking are different beasts, so your point is irrelevant."

They are different - and that is the whole point - and is entirely relevant.

From Windows 2K3 onwards, Active Directory passwords are by default not stored using any sort of reversible encryption or crackable (LanMan) hash. They are only stored as a complex one way hash function. Therefore there is no way of recovering the original password other than brute force. Which is likely not computationally feasible for anything complex and at least ~ 8 characters or longer.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019