Breaking into Vista by resetting their password

Discussion in 'privacy problems' started by caspian, Apr 23, 2009.

Thread Status:
Not open for further replies.
  1. caspian

    caspian Registered Member

    Joined:
    Jun 17, 2007
    Posts:
    2,301
    Location:
    Oz
  2. traxx75

    traxx75 Registered Member

    Joined:
    Jun 23, 2008
    Posts:
    106
    This was possible in XP so it doesn't surprise me it's possible with Vista. Resetting an account password has at least two implications, though:

    1. The target will know their account was compromised
    2. You may lose access to certain files that may have been encrypted by the user using Windows encryption

    Cracking the password so that you only retrieve its value [rather than resetting it] is a whole different matter!

    Says something about storing sensitive data in encrypted form and also changing the name of the default admin account to something else where possible :)
     
  3. lodore

    lodore Registered Member

    Joined:
    Jun 22, 2006
    Posts:
    9,006
    its not surprising at all.
    how to reset debian root password
    the point im trying to make with that link is if you have physical access to a machine you can do anything.

    btw in safemode on vista the secret administrator account with no password is no longer enabled as default.
    my friend found out the hard way when he forget his only user account password.
    luckily he had only created an account and shut it down so it was easier to just reset to factory settings.
     
  4. Eice

    Eice Registered Member

    Joined:
    Jan 22, 2009
    Posts:
    1,413
    Relying on account passwords in Vista (or Linux) for security is just plain stupid. Bypassing it has NEVER been a problem. All your files are available to anyone who boots the computer using another media, e.g. a Linux LiveCD.
     
  5. caspian

    caspian Registered Member

    Joined:
    Jun 17, 2007
    Posts:
    2,301
    Location:
    Oz
    Wow. Thanks for the info.
     
Loading...
Thread Status:
Not open for further replies.