[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: NT insecurity



On Sat, 16 Nov 1996 17:00:56 -0500 (EST), Michael H. Warfield wrote:

>	Hooo  Hummm...  Another one...

>> Given the recent comments about insecure machines, I thought it was
>> interesting to note that you can clear *every* password on an NT box by using
>> a diskeditor to corrupt the password file (Boot off of a floppy and use
>> NTFSDOS if you have to).  It'll reboot several times and then you'll be
>> allowed to login.

>	Much as I absolutely detest NT, lets reitterate what everyone else
>on this list has already heard too TOO many times...  If you have physical
>access to the machine, it ain't secure.  It doesn't matter what operating

True.  However, as has been reiterated many times, NT is being marketed as a
secure platform.  Unix people tend to know that you need to work to secure
it.  MS hype might lead some of the non-cypherpunk admin types to believe
it's secure.  Trust me. I hear from these people all the time!

#  Chris Adams <[email protected]>   | http://www.io-online.com/adamsc/adamsc.htp
#  <[email protected]>		 | send mail with subject "send PGPKEY"
"That's our advantage at Microsoft; we set the standards and we can change them."
   --- Karen Hargrove, Microsoft (quoted in the Feb 1993 Unix Review editorial)