nerdexam
GIAC

GCIH · Question #574

You are a Windows XP user and you want to ensure that your account does not have a LANMAN hash. How can this be achieved?

The correct answer is A. Select a password 15 or more characters long. If an account has a password that's 15 or more characters on WinNT SP4+, 2000, XP, and 2003, that account won't have a LANMAN Hash. Instead, only the far stronger NT hash will be stored for that account.

Vulnerability Exploitation & Privilege Escalation

Question

You are a Windows XP user and you want to ensure that your account does not have a LANMAN hash. How can this be achieved?

Options

  • ASelect a password 15 or more characters long
  • BHave your system administrator turn LANMAN support off on the server
  • CWindows XP does not support LANMAN hashing
  • DUn-click Use LANMAN in the User Manager

How the community answered

(56 responses)
  • A
    91% (51)
  • B
    5% (3)
  • C
    2% (1)
  • D
    2% (1)

Explanation

If an account has a password that's 15 or more characters on WinNT SP4+, 2000, XP, and 2003, that account won't have a LANMAN Hash. Instead, only the far stronger NT hash will be stored for that account.

Topics

#LANMAN hash#Windows authentication#password policy#credential security

Community Discussion

No community discussion yet for this question.

Full GCIH Practice