Security Basics mailing list archives

Where are Local Passwords stored on Win2K

From: "Wilcox, Stephen" <StephenWilcox () universalcomputersys com>
Date: Mon, 20 Oct 2003 15:40:09 -0500

Hello, I'm looking for some information. Walking through security =
compromises within our network. Let me explain, I have two web server =
in a cluster on the DMZ. they talk to a SQL cluster on the internal =
network. These two SQL server are not a member of the AD. =20

My boss want to know the good, bad, and ugly for making them members of =
the AD.

If someone compromised a WEB server, would they be able to find the =
local cached passwords that are stored on the box and decrypt them? =
Then login to the web server with the AD account, and use a tool like =
LDP to gather AD DC information, and all pc's and usernames.

Where would I locate the cached stored password to see if the risk is =
too great to allow.

I know PWDUMP3 will get the SAM but I'm looking for the location of the =
stored cached password.

I also know if the local admin password is compromised then a key logger =
can be installed to gather the information anyway, but need the other =
information for my report.

Thanks

----------------------------------------
The information transmitted in this message is intended only for the person or entity to whom it is addressed and may
contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking
of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited.
If you received this in error, please contact the sender and destroy any copies of this document.

---------------------------------------------------------------------------
FREE Whitepaper: Better Management for Network Security

Looking for a better way to manage your IP security?
Learn how Solsoft can help you:
- Ensure robust IP security through policy-based management
- Make firewall, VPN, and NAT rules interoperable across heterogeneous
networks
- Quickly respond to network events from a central console

Download our FREE whitepaper at:
http://www.securityfocus.com/sponsor/Solsoft_security-basics_031015
----------------------------------------------------------------------------

Current thread:

Where are Local Passwords stored on Win2K Wilcox, Stephen (Oct 20)
- RE: Where are Local Passwords stored on Win2K dave kleiman (Oct 21)
- <Possible follow-ups>
- RE: Where are Local Passwords stored on Win2K Meidinger Chris (Oct 23)
- RE: Where are Local Passwords stored on Win2K Wilcox, Stephen (Oct 23)