XP passwords rendered useless

Discussion in 'privacy general' started by spy1, Feb 18, 2003.

Thread Status:
Not open for further replies.
  1. spy1

    spy1 Registered Member

    Joined:
    Dec 29, 2002
    Posts:
    3,139
    Location:
    Clover, SC
  2. JacK

    JacK Registered Member

    Joined:
    Jun 20, 2002
    Posts:
    737
    Location:
    Belgium -Li?ge
    Hi Sp1,

    It already existed with the Peter Nordhal Method for ALL NT OS booting from a LINUX floppy disk or bootable CD, I often use it for regardless customers :)

    Info and d/l :
    http://home.eunet.no/~pnordahl/ntpasswd/

    If you really want to protect your PC against it :

    password protect your BIOS and deny boot from floppy, CD and network.

    Alternative prevention : a hungry pitbull in front of your machine.

    http://smilies.sofrayt.com/%5E/6/pirateinhat.gif
     
  3. Pieter_Arntz

    Pieter_Arntz Spyware Veteran

    Joined:
    Apr 27, 2002
    Posts:
    13,332
    Location:
    Netherlands
    :D
     
  4. spy1

    spy1 Registered Member

    Joined:
    Dec 29, 2002
    Posts:
    3,139
    Location:
    Clover, SC
    Does even encrypting the entire HD work?

    You know, this is all getting pretty useless. Pete
     
  5. Checkout

    Checkout Security Rhinoceros

    Joined:
    Feb 11, 2002
    Posts:
    1,226
    Never walk away from your machine without pressing caps lock. Then, cunningly, press and glue down the shift key. Only you will know that prising off the shift key will allow lower case letters to be entered once more, thus making your PC usable.

    The bad guys don't know this, and it will make them have migraines trying to figure it out.
     
  6. Wayne - DiamondCS

    Wayne - DiamondCS Security Expert

    Joined:
    Jul 19, 2002
    Posts:
    1,533
    Location:
    Perth, Oz
    "... this will be little comfort to the administrators of academic computer laboratories and other facilities where users can easily pop a CD-ROM into a computer" - so disable the ability to boot from a CD (or floppy for that matter) in the BIOS.

    There are much worse things people can do if they've got physical access to your computer - pull out your hard disk and put it into their machine and they've got full access too. There's only so much you can do with the recovery console - I'd be just as worried about someone booting a Knoppix CD (well worth a look incidentally), that'll read NTFS partitions regardless of file security settings.

    ... interesting read nonetheless though ... :)
     
  7. JacK

    JacK Registered Member

    Joined:
    Jun 20, 2002
    Posts:
    737
    Location:
    Belgium -Li?ge
    Hello,

    Useless : if booting from a floppy or CD is allowed, just put one and reboot from the tower and it's done.

    Rgds,
     
  8. Checkout

    Checkout Security Rhinoceros

    Joined:
    Feb 11, 2002
    Posts:
    1,226
    I forgot to say that when you're glueing the shift key, let some of the glue drip into the floppy and CD drives. (Sorry.)
     
  9. JacK

    JacK Registered Member

    Joined:
    Jun 20, 2002
    Posts:
    737
    Location:
    Belgium -Li?ge
    :D :D :D

    http://smilies.sofrayt.com/%5E/r/cheese.gif
     
  10. luv2bsecure

    luv2bsecure Infrequent Poster

    Joined:
    Feb 9, 2002
    Posts:
    713
    Pete mentioned the only REAL solution - Full Disk Encryption with pre-boot authentication.

    I would not use my XP machine without DriveCrypt PlusPack. DCPP is an excellent program - though pricey. However, anyone who has Drivecrypt 3.03 can usually get it for 1/2 price.
    http://www.drivecrypt.com/dcplus.html

    Still not cheap - until you add up the price of lack of protection.

    John
    Luv2BSecure
     
  11. Yinda

    Yinda Registered Member

    Joined:
    Nov 17, 2002
    Posts:
    78
    I have been shocked when reading the different posts and wanted to see it myself.

    Using a LINUX floppy disk on a PC with XP Pro SP1 + NTFS, all users are indeed listed for modification ! I choosed to modify the password of a user with Admin privilege. However, when saving the modification, the following message is displayed :
    The initialization error may be due to a new password longer than the old one (?). Without this error, would XP really allow the modification ?!
     
  12. JacK

    JacK Registered Member

    Joined:
    Jun 20, 2002
    Posts:
    737
    Location:
    Belgium -Li?ge
    Hello,

    I do it often on customers' machines when they forgot their pwd : I copy it and then reboot on Windows with the good one retrieved, I never tried to modify it.
     
  13. Yinda

    Yinda Registered Member

    Joined:
    Nov 17, 2002
    Posts:
    78
    Hi Jack,

    You are right. It is not necessary to modify the password. Retrieve it is enough.

    Yinda
     
Loading...
Thread Status:
Not open for further replies.