Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations wOOdy-Soft on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Check the link below, problem or not?

Status
Not open for further replies.
greyted

greyted

Technical User
Dec 29, 2001
449
GB
Came across this link today, I think it is worth reading.
This article refers to a supposed issue regarding XP Admin access.


Comments please guys as I have not seen anything like this before. Is it an issue we should be aware of?
Can't try this myself as I do not own a 2000 cd.
 
eeek! I think i will stay with Win2K! Good luck, and Happy Computing
 
Interesting article. Unfortunately I don't have a 2K cd to try with. I would be interested in tests on this myself. I expect that if this is a true vulnerability, MS will create a fix quickly.
 
Windows 2000 and NT aren't all that secure either. I have a bootable CD that will change the Administrator password to whatever you want, thus allowing you access.
 
Well there will always be 'cracks'. Check the FAQ of this forum for some of them. But I wouldn't expect an older MS os to unkowingly defeat a password.
 
smah,
Agree with your post regards an older os defeating a password. If the article is true I can foresee some problems for admin people.
A quick MS fix required.
Do hope that someone tries a Windows 2k cd and will post the results.
 
I'm no security 'expert' now, but have seen this debated many times in the past regarding Linux and "booting into single user mode" and "booting from a floppy" allowing root access with no password. The mindset I took from that is, if I am an admin in a corporate setting, I wouldn't let anyone boot from any media (floppy or CD), and password protect those options at the BIOS level. Physical access and removable bootable media is sure-fire security hole (how about a Knoppix CD and some cracker tools on a floppy?). Heck, if a user can pick a workstation up off a desk and toss it out the window, you could call that a potential security (okay, maybe just a DoS situation) couldn't you? --
JR
 
yes it does work - but as various people have mentioned - it requires physical access to machine (and with Linux boot disk to change admin password, you can get into nt, 2k or xp box no problem - so doesn't add t osecurity problems IMO. There was another post recently with similar 'results' - ie need pysical access to machine).

so no real point scaremongering (btw - on the helpful side, all those who don't know - 2k & XP recovery console also work with NT - added bonus eh!!)
 
I like flugh's 'DoS' method.
 
wolluf,
No scaremongering inteded, just concerned a user.

flugh,
Would agree with you but have not seen this issue posted here before. Thanks for the post confirming it does work.
Not everybody has Lindows, cool to be aware though.
As smah said, "He would not expect an older os to unknowingly defeat a password."

Thanks guys.
 
Status
Not open for further replies.

Similar threads

Sebastian42
  • Locked
  • Question
Possibly a timing problem
Replies
3
Views
1K
Rick998
Rick998
VicM
  • Locked
  • Question
Problem updating Windows Explorer
Replies
1
Views
934
Nancycaf
Nancycaf
hamburg18w
  • Locked
  • Question
Task Host is Stopping the Shutdown
Replies
1
Views
989
Ign3us
Ign3us
pjw001
  • Locked
  • Question
Programs not loading on Windows 11 Version 22H2.
Replies
9
Views
1K
pjw001
pjw001
VicM
  • Locked
  • Question
Change name not showing in user account 1
Replies
13
Views
1K
guitarzan
guitarzan

Part and Inventory Search

Sponsor

Back
Top