1996-11-17 - Re: NT insecurity

Header Data

From: Lone_Wolf <gt6511a@cad.gatech.edu>
To: cypherpunks@toad.com
Message Hash: 6f0b671bb7a3451fc4e0e348a4bcd009c4e0e72c5ad8264f81cd613c5d356cc2
Message ID: <199611170457.XAA20573@gypsy.cad.gatech.edu>
Reply To: <19961117020255750.AAA212@rn234.io-online.com>
UTC Datetime: 1996-11-17 04:58:11 UTC
Raw Date: Sat, 16 Nov 1996 20:58:11 -0800 (PST)

Raw message

From: Lone_Wolf <gt6511a@cad.gatech.edu>
Date: Sat, 16 Nov 1996 20:58:11 -0800 (PST)
To: cypherpunks@toad.com
Subject: Re: NT insecurity
In-Reply-To: <19961117020255750.AAA212@rn234.io-online.com>
Message-ID: <199611170457.XAA20573@gypsy.cad.gatech.edu>
MIME-Version: 1.0
Content-Type: text


# 
# On Sat, 16 Nov 1996 17:00:56 -0500 (EST), Michael H. Warfield wrote:
# 
# >	Hooo  Hummm...  Another one...
# 
# >> Given the recent comments about insecure machines, I thought it was
# >> interesting to note that you can clear *every* password on an NT box by using
# >> a diskeditor to corrupt the password file (Boot off of a floppy and use
# >> NTFSDOS if you have to).  It'll reboot several times and then you'll be
# >> allowed to login.
# 
# >	Much as I absolutely detest NT, lets reitterate what everyone else
# >on this list has already heard too TOO many times...  If you have physical
# >access to the machine, it ain't secure.  It doesn't matter what operating
# 
# True.  However, as has been reiterated many times, NT is being marketed as a
# secure platform.  Unix people tend to know that you need to work to secure
# it.  MS hype might lead some of the non-cypherpunk admin types to believe
# it's secure.  Trust me. I hear from these people all the time!

As do I.  In fact, in a decision made prior to my joining my current employer,
the IS manager actually advocated security by obscurity, believing that NT was
so new that nobody would know the security flaws in it.  So our firewall is
an NT platform with a commercial firewall product on it.  Which limits our
functionality (we call up for support saying "this is what we want to do", and
they say "Oh, our Unix version will do that, but not our NT version".  Not to
mention, it's pretty bad when your firewall crashes out from under (leaving no
access, instead of open access, but it STILl interferes with getting work
done, especially since 90% of my work involves a remote site on the other side
of the firewall).

James
# 
# #  Chris Adams <adamsc@io-online.com>   | http://www.io-online.com/adamsc/adamsc.htp
# #  <cadams@acucobol.com>		 | send mail with subject "send PGPKEY"
# "That's our advantage at Microsoft; we set the standards and we can change them."
#    --- Karen Hargrove, Microsoft (quoted in the Feb 1993 Unix Review editorial)
# 
# 
# 






Thread