Re: Gaining Administrator Access to Windows XP Professional SP2 Sy



"Shenan Stanley" wrote:

stephen-robertson wrote:
I downloaded software from http://ebcd.pcministry.com that allowed
me to gain Administrator access to my PC by blanking the
administrator password. I could also use this software to change
the password of any user that has a local account on the computer.
The software does this by modifying the password hashes in the SAM
hive of the registry.

I have set policies that require complex passwords, and passwords
must be at least eight characters. However, this seems to only
affect creating or setting passwords within Windows. Apparently,
these settings aren't applied when at the logon prompt, so anyone
who has physical access to the computer using this software could
gain complete access to the system.

This is a definite weakness in the Windows security model and
should be corrected. Ideally, the logon process should not allow a
user to enter a password that doesn't meet the policies set in
Local Computer Policy, even if the password is the valid password
for the account.

Shenan Stanley wrote:
Physical access + time + know-how, no matter the operating system -
is owning the machine and all non-encrypted data within fairly
easily. That's why the first rule in system security is still
physical security.

Shenan Stanley wrote:
Thought other links might interest you...

Hack your password:
http://home.eunet.no/~pnordahl/ntpasswd/bootdisk.html

Another:
http://www.thomasmathiesen.com/itak/html/software.html

LCP
http://www.lcpsoft.com/english/

John the Ripper
http://www.openwall.com/john/

L0phtCrack is/was popular as well - but I couldn't find the link
quickly (Symantec owns it.)

How to create and use a password reset disk for a computer that is
not a domain member in Windows XP
http://support.microsoft.com/kb/305478

stephen-robertson wrote:
I agree that physical security must be the first priority.
However, what happens when your laptop is stolen and someone is
then able to gain access to the system? Even if the laptop has a
BIOS password set, those are still easy to bypass. Would you want
your data at risk because Microsoft has a flawed security model? I
don't.

If you lose your laptop, leave a door unlocked, whatever - it doesn't matter
WHAT OS you have - any unencrypted data is owned if the person wants it, has
time and some know-how. *nix, MacOS, Windows - doesn't matter. If you did
not take steps beyond the logon password to protect your data from prying
eyes - and lapsed on physical security or lost your laptop/thumb
drive/whatever - then you are digging your own grave. Passwords never have
been more than a nuisance to a hacker unless they are associated with some
form of data encryption as well.

*You* have to be responsible for the safety of your data.
Encrypt it. That's pretty much the safest method these days for situation
like you describe.
Be sure you understand the encryption model you use (and how to
backup/restore the keys, certificates, etc.)
Windows XP Professional and supersets thereof has this ability built in.

--
Shenan Stanley
MS-MVP
--
How To Ask Questions The Smart Way
http://www.catb.org/~esr/faqs/smart-questions.html




I also agree that passwords provide a false sense of security. However,
most people only rely on passwords for security and don't use any type of
encryption. When was the last time you heard Microsoft advertising data
encryption as a feature of their operating systems? Microsoft's file
encryption implementation almost guarantees that only advanced users would
take advantage of it. Otherwise, it wouldn't be "hidden" in the Advanced
properties page for files or folders.

My point is that Microsofts's security model fails when someone can gain
unauthorized physical access to a computer, and Microsoft needs to design for
that.

Stephen
.

Relevant Pages

  • Re: Gaining Administrator Access to Windows XP Professional SP2 Sy
    ... gain complete access to the system. ... That's why the first rule in system security is still ... Be sure you understand the encryption model you use (and how to ... System private key if you are using EFS. ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Gaining Administrator Access to Windows XP Professional SP2 Sy
    ... gain complete access to the system. ... That's why the first rule in system security is still ... Be sure you understand the encryption model you use (and how to ... System private key if you are using EFS. ...
    (microsoft.public.windowsxp.security_admin)
  • CryptoSurvey -- Results ..
    ... Many same or similar behavioral barriers for the ... effective utilization of many security solutions still exist limiting ... applications of encryption technologies currently in commercial ... Many people do not care about cryptography and/or security products ...
    (sci.crypt)
  • CryptoSurvey -- Results ..
    ... Many same or similar behavioral barriers for the ... effective utilization of many security solutions still exist limiting ... applications of encryption technologies currently in commercial ... Many people do not care about cryptography and/or security products ...
    (sci.crypt)
  • Re: OT - Kuwait
    ... > One place where I agree with you is that the scope of government intrusion ... > into the private matters of Americans is much greater than most Americans ... >>> strict security procedures to prevent unauthorized release of the keys. ... >> Feds Want to Control Encryption ...
    (alt.sports.football.pro.ne-patriots)