> disabled RC4 where possible
replyI'm curious. Under what circumstances would it be _not_ possible to disable RC4?
Is this in case there is a Windows 98 machine running somewhere in the network?
In my experience it's always been legacy hardware or industrial automation where it would cost millions to update the equipment / software. Simply limiting the blast radius of those systems and isolating them on the network into their own security zone is always less expensive and thus the perfectly reasonable solution.
replyCheap Cloud storage has never returned rainbow tables to viability, right? I stopped checking sometime after I got out of the space.
replysalting defeats the rainbow table, kerberos uses PBKDF2 that defeats the rainbows
reply