windows 2003 domain password file

If an attacker was able to gain a copy of the windows 2003 domain password file (Kerberos), how hard is it crack/decrypt passwords from that file? Its my understanding those are encrypted via one-way hash. Anyone have any insight they can share regarding the level of complexity involved decrypting windows password files??
DEFclubAsked:
Who is Participating?
 
setasoujiroCommented:
Also make sure your server is fully patched.
0
 
setasoujiroCommented:
If an attacker would capture a Hashed password in some way, he could use this HASH to gain access to the system in various ways.
Windows will allow the Hash to be used as wel as the password itself.
For example, metasploit has various exploits for SMB that can use the HASH as well as a PASSWORD
0
 
setasoujiroCommented:
Also these hashes are not 1-way and could be cracked using rainbow-tables
0
Network Scalability - Handle Complex Environments

Monitor your entire network from a single platform. Free 30 Day Trial Now!

 
Neil RussellTechnical Development LeadCommented:
When 2003 was released it was reasonably secure BUT with todays computing power and advances in decryption, the average hacker could have access to your system in a very very short time.

Hence the advice I give out time and time again....

DO NOT USE YOUR DC FOR ANYTHING EXCEPT A DC. DO NOT HAVE SHARES ON YOUR DC. DO NOT INSTALL APPS ON YOUR DC FOR USERS.
0
 
DEFclubAuthor Commented:
I do use my DC as DC, DNS and some DHCP only. Someone got ahold of my password file. Not sure if it ws an inside job, but I did have a social engineering attack where an attacker may have gained access to a couple users passwords; these were just users with no admin rights, but even so, how would they be able to get access to the windows password file?
0
 
setasoujiroCommented:
There are various ways to get the password hashes/files.
If someone was to gain access to a user's pc/account they could easily sniff your network for hashes flying by (SMB etc...)

Or they could just use an exploit on your server and dump the entire password database (the hashes)
and then crack the hashes/ use them to authenticate.
0
 
DEFclubAuthor Commented:
thxs
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.