RN1 said:
I am working on WinXP Pro SP2. My PC is password protected but if I am
not mistaken, I believe password protection can be disabled by going
to the BIOS (by keeping the Del key pressed on the keyboard when the
PC starts), isn't it?
If that's indeed how password protection can be disabled in WinXP, is
there any way to stop others from disabling password protection (maybe
by making BIOS password protected so that for entering BIOS, one has
to enter a password to access the BIOS)?
General computer security information:
Any computer running any operating system can be accessed by someone with 1)
physical access; 2) time; 3) skill; 4) tools. There are a few things you
can do to make it a bit harder though:
1. Set a password in the BIOS that must be entered before booting the
operating system. Also set the Supervisor password in the BIOS so BIOS
Setup can't be entered without it.
2. From the BIOS, change the boot order to hard drive first.
3. Set strong passwords on all accounts, including the built-in
Administrator account.
4. If you leave your own account logged in, use the Windows Key + L to lock
the computer (and/or set the screensaver/power saving) when you step away
from the computer and require a password to resume.
5. Make other users Limited accounts in XP Home, regular user accounts in XP
Pro.
6. Set user permissions/restrictions:
a. If you have XP Pro, you can set user permissions/restrictions with Group
Policy (Start>Run>gpedit.msc [enter]) but be careful. Using the Policy
Editor can be tricksy. Questions about Group Policy should be posted in its
newsgroup: microsoft.public.windows.group_policy.
b. If you have XP Home, you can use MVP Doug Knox's Security Console or the
MS Steady State. SteadyState also works in XP Pro if you'd rather not use
Group Policy.
http://www.dougknox.com
Steady State -
http://www.microsoft.com/windows/products/winfamily/sharedaccess/default.mspx
Malke
