From: Tim (pand0ra.usa@gmail.com)
Date: Fri Jan 20 2006 - 02:15:41 EST
Correction on the last line.
"Note that after you disable the storage of passwords you will have
to change the
password in order for it not to store the new password. My
understanding is that the old password will always remain." Should
read as "Note that after you disable the storage of passwords you
will have to change the password in order for it not to store the old
LM hash." From what I have seen the LM field for the hash is blanked
out but you will see a hash for the NTLM field.
------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:
Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:
http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:23 EDT