All previous versions of NT stored an
easy-to-crack hash of all the passwords along with the more secure
hashes. This was done for backward compatibility with LAN Manager Clients
(non-NT Operating systems such as Windows 95, DOS, etc.).
You can disable the storage of the non secure passwords by:
Click on Start, Programs, Administrative
Tools, Local Security Settings.
From within Local Security Settings, click
on Local Policies then Security Options.
Find Network Security->Do not store LAN
Manager Hash on next password change and enable. |