Re: Security issue??
From: Brad Pears (donotreply_at_notreal.com)
Date: 09/09/05
- Next message: Micha2505: "INF Install Error"
- Previous message: Lanwench [MVP - Exchange]: "Re: Error Message/Crashing"
- In reply to: CReWdog: "Re: Security issue??"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 9 Sep 2005 11:44:22 -0400
Yes, I did put a password on the admin account. I have heard of what you
mentioned there regarding sending your files to a website and they'll tell
you what the password is... I tried that once before for a machine I could
not figure out the admin password on, had to run a utility that copied the
two files to floppy (likely the ones you mentioned) , then posted those two
files to the website and about a day later, I had the password. It worked
quite well actually!!!
Thanks for the input...
"CReWdog" <CReWdog.1v0hi4@mail.mcse.ms> wrote in message
news:CReWdog.1v0hi4@mail.mcse.ms...
>
> Sparda wrote:
>> *"Sparda" wrote:
>> > Well, he could have used a clever service (that runs as system
>> > which has compleate control) to run cmd, which would give him
>> > compleate access to every thing and could run the user
>> > management thing and then give him self admin rights, not
>> > exacly hard.
>>
>> You ask how he could run a program via a service? well, he could
>> have
>> found a service exe that he can change stuff, and replace the exe.
>> If
>> this is not the case, it can be a bit more tricky, he would have had
>> to find a way to run a program as system with out going though a
>> service.
>>
>> Posted Via webservertalk.com Premium Usenet Newsgroup Services
>> ----------------------------------------------------------
>> ** SPEED ** RETENTION ** COMPLETION ** ANONYMITY **
>> ----------------------------------------------------------
>> http://www.webservertalk.com *
>
>
> Hi.
> Dead easy, all he has to do is obtain a copy of the "system" & "sam"
> files in the winnt/system32/config folder using a win98 boot disc & a
> programme to copy the 2 files. He can then either extract the password
> hashes & brute force them to get the password (takes a LONG time if a
> strong password is used) or (much quicker) post the hashes onto a
> certain site that has already decoded ALL possible hash combinations
> (they use something called rainbow tables) then they compare your
> hashes with the ones contained in the tables & tell you what the
> corresponding password is).
> OR... he could have logged into the admin account in safe mode.... you
> DID put a password on it, didn't you??? (This account has no password
> unless you set one.
>
> Regards
>
> CReWdog.
>
>
>
> --
> CReWdog
> ------------------------------------------------------------------------
> Posted via http://www.mcse.ms
> ------------------------------------------------------------------------
> View this thread: http://www.mcse.ms/message1836564.html
>
- Next message: Micha2505: "INF Install Error"
- Previous message: Lanwench [MVP - Exchange]: "Re: Error Message/Crashing"
- In reply to: CReWdog: "Re: Security issue??"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
