1996-11-17 - Re: NT insecurity

Header Data

From: Matthew Ghio <ghio@myriad.alias.net>
To: cypherpunks@toad.com
Message Hash: 86cca4e6a42b78ce891645ec3a41ba27ef8296209c6197186bf18391239c83a7
Message ID: <199611170102.UAA06180@myriad>
Reply To: <19961116064952843.AAA201@rn232.io-online.com>
UTC Datetime: 1996-11-17 01:04:30 UTC
Raw Date: Sat, 16 Nov 1996 17:04:30 -0800 (PST)

Raw message

From: Matthew Ghio <ghio@myriad.alias.net>
Date: Sat, 16 Nov 1996 17:04:30 -0800 (PST)
To: cypherpunks@toad.com
Subject: Re: NT insecurity
In-Reply-To: <19961116064952843.AAA201@rn232.io-online.com>
Message-ID: <199611170102.UAA06180@myriad>
MIME-Version: 1.0
Content-Type: text/plain


"Chris Adams" <adamsc@io-online.com> wrote:
> Given the recent comments about insecure machines, I thought it was
> interesting to note that you can clear *every* password on an NT box
> by using a diskeditor to corrupt the password file (Boot off of a floppy
> and use NTFSDOS if you have to).  It'll reboot several times and then
> you'll be allowed to login.

You can do the same with every other operating system that doesn't have
an encrypted filesystem; Microsoft was just the only company dumb enough
to claim their filesystem was secure because they didn't think that
anyone would reverse-engineer it.





Thread