|
|
|
|||
|
|
||||
Windows 2000 LDAP Password Crack
If your users ever decide that they want to configure their own LDAP queries to domain controllers, then the Windows 2000 manual says you have to log into the domain controllers. So in your LDAP configuration menu you have to specify username/password.
Unfortunately, LDAP is not Kerberized, so the passwords are sent in the clear. So in pure W2K environments where your sniffing the wire won't get you too many passwords because of Kerberos, just send out a spoofed email to some employees asking them to configure their LDAPs for testing........
Home | Services | Training | Support | Contact Us | Search
Copyright 2006, Security Evolution, Inc.