How to recover a cached password

  • Thread starter Thread starter Ron Yuen
  • Start date Start date
R

Ron Yuen

I always enable the "click here to remember password" option when logging on
to secure websites. Unfortunately I have forgotten what my log in password is
for one of my company intranet sites. I am trying to set up access on another
PC other than my own one with the "cached password" and I have forgotten the
original one. Is there a way to go into the registry and somehow identify the
web site log on information "remembered" by my WIN 2K Pro workstation? Thanks
in adavanced!

-Ron
 
No

--

Regards,

Dave Patrick ....Please no email replies - reply in newsgroup.
Microsoft Certified Professional
Microsoft MVP [Windows]
http://www.microsoft.com/protect

:
|I always enable the "click here to remember password" option when logging
on
| to secure websites. Unfortunately I have forgotten what my log in
password is
| for one of my company intranet sites. I am trying to set up access on
another
| PC other than my own one with the "cached password" and I have forgotten
the
| original one. Is there a way to go into the registry and somehow identify
the
| web site log on information "remembered" by my WIN 2K Pro workstation?
Thanks
| in adavanced!
|
| -Ron
 
Ron Yuen said:
I always enable the "click here to remember password" option when logging on
to secure websites. Unfortunately I have forgotten what my log in password is
for one of my company intranet sites. I am trying to set up access on another
PC other than my own one with the "cached password" and I have forgotten the
original one. Is there a way to go into the registry and somehow identify the
web site log on information "remembered" by my WIN 2K Pro workstation? Thanks
in adavanced!

-Ron
Click to expand...

Passwords are "hashed", that is they are translated into a string
with an algorithm that is irreversible. In other words, even if
you found the storage location for cached passwords it would
be of no use because you could not translate them back to their
original.
 
Please correct me if I'm wrong, but the stored passwords are more
advanced than just a hash. The browser has no way of knowing what type
of hash the website used (if any) as such, it cannot simply store the
hash. If it stored the hash, say "xWe2e " was the hash, it needs to be
able to convert that back into "password" to auto fill the form on the
site. Putting in "xWe2e" into the login form would deny you access.
For local passwords, yes hash's work great because you hash the
password the user entered, and if it matches the stored hash, then they
are allowed in. In that case the hash cannot be reversed (at least not
with current tech). But in order to auto fill in the form, the real
password must be stored somewhere. Finding it may be tough as that is
most likely hashed, encrypted, something, but since it can repopulate
the form from a stored password value, the password must still exist
somewhere.
 
Thank you so much Tim! It worked great and I was able to recover my old
password. This time I wrote it down so I don't loose it again! Thank you so
much again! You guys are just great in this user group. I don't know how
many times you guys have pulled me out of messy situation.

-Ron
 
Back
Top