Re: [Full-disclosure] Removing the NIC cable = EoP?

This doesn't work on XP. Pulling the network cable *does not* cause the
machine to default to local administrator. From the lame post:

"Login on the computer, and wait for the login window to disappear. Pull the
network cable out of the wall. After about 30 seconds you will see the
message that "could not retrieve local profile". It now loads up into the
LOCAL administrator mode"

Think about this for just a second. Think about how Windows has worked with
profiles since pretty much forever. The profile will be (unless configured
otherwise) cached on the local machine. If configured to not be cached on
the local machine you will either be given a default desktop (in luser land
not local admin) and in some cases (older windows versions) you won't be
allowed to login.

So either the post is complete baloney or there is something badly
misconfigured.


On 10/2/06, Krainium <krainium@xxxxxxxxx> wrote:


This seems to me to be more of a poor policy configuration. In Windows
XP, the policy settings 'Local Policies/' 'Log on locally' and 'Deny
logon locally' should prevent what this person is claiming (given proper
policy settings). They did not identify a specific OS, but I assume
it's XP.

I haven't tried it, but that's my first impression.


> Hi list,
>
> recently I came across this link:
> http://evolvedlight.co.uk/?p=6
>
> I searched around but didn't find anything more specific about this,
> kinda, EoP. Can someone actualy confirm this is working? Any
> informations would be much appreciated.
>
> Thank you.
>
> -E.
>
>
> ____________________
> http://www.email.si/
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Relevant Pages

  • Re: User has to log into exchange
    ... I have seen this happen on RTM versions of Windows XP Pro. ... I have also had exactly this issue on a customer site recently on a Windows ... Login as local administrator (If local administrator password is lost, ...
    (microsoft.public.backoffice.smallbiz2000)
  • Re: Unable to login to SBS based domain because I made a mistake on the client build
    ... If you can't log in to Windows, you can't remove it from the domain. ... But even if it's domain joined, you should still have a local Administrator account on the machine, created during the install. ... to allow local login since cached logins is disabled for security ... So now I am stuck with a client computer that is out of reach ...
    (microsoft.public.windows.server.sbs)
  • Re: administrator not able to login
    ... What is the Windows version of Terminal Services are you running? ... Does this 'if i create any new user i can login from this user to system' means the user can logon remotely with terminal services? ... Does your local administrator has a non-blank password? ...
    (microsoft.public.windows.terminal_services)
  • Re: login
    ... > i can login in to change it ... How to Log On to Windows XP If You Forget Your Password or Your Password ... you might try to reset the local Administrator ... Microsoft MVP Scripting and WMI, ...
    (microsoft.public.windowsxp.security_admin)
  • RE: Password never set - locked out of Windows XP Home
    ... Ran fixboot last night, and although the system said it had fixed the boot ... I am still stuck in the redundant loop of getting to a pop-up login ... only to not have it shutdown but instead pop back up with the same login box. ... my Windows XP Home system worked great. ...
    (microsoft.public.windowsxp.accessibility)