What do you think is the most likely reason behind this?

seenagapeApril 21, 2012

A user on your Windows 2000 network has discovered that he can use L0phtcrack to sniff the SMB exchanges which carry user logons. The user is plugged into a hub with 23 other systems. However, he is unable to capture any logons though he knows that other users are logging in.

PrepAway - Latest Free Exam Questions & Answers

A.
There is a NIDS present on that segment.

B.
Kerberos is preventing it.

C.
Windows logons cannot be sniffed.

D.
L0phtcrack only sniffs logons to web servers.

Explanation:
In a Windows 2000 network using Kerberos you normally use pre-authentication and the user password never leaves the local machine so it is never exposed to the network so it should not be able to be sniffed.

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

ECCouncil Exam Questions

Free EC-Council Study Guide

What do you think is the most likely reason behind this?

Leave a Reply Cancel reply