I have been trying to find a clear answer to
this but most of the reading I found about this
is beyond my understanding at the moment.
Let me see if I am getting this right (I
realize this is a really dumbed down version),
the password string is put into a Hash Code and
then stored. Some operating systems implement
the salt as a extra security feature. Am I way
off with this or am I pretty close?
Does anyone know if Windows XP SP3 incorporates
a salt element when they hash passwords?
Thanks
- Follow via:
- RSS
- Email Alert
Question
Answers (4)
0
Votes
Why don't you ask Microsoft that question?
Even IF we knew, we wouldn't post the answer here. Try calling Microsoft Technical Support and ask that question. I'm sure they'll be willing to give away their secrets! 
17th Nov 2008
Replies
Why would you not post the answer to my
question?
question?
omegafire
23rd Nov 2008
0
Votes
A little less salt
and more pepper if you ask me. Windows does an awful lot of sneezing.
17th Nov 2008
Replies
mmmmm salty
.Martin.
17th Nov 2008
0
Votes
Yes.
!
17th Nov 2008
0
Votes
No (old post, but so what)
I know this is a very old post, but just in case someone else stumbles across this post, I want to make sure they get the right answer.
No, Windows XP (and Vista, and 7) all don't salt their passwords before storing them.
I found these articles that talk about the salt, and windows passwords in general, in a way that makes sense:
http://cyber31337.com/quick/quick-password-salts/
http://cyber31337.com/security/windows-password-hashes/
No, Windows XP (and Vista, and 7) all don't salt their passwords before storing them.
I found these articles that talk about the salt, and windows passwords in general, in a way that makes sense:
http://cyber31337.com/quick/quick-password-salts/
http://cyber31337.com/security/windows-password-hashes/
Updated - 27th Dec 2009
