R
realrobley
I just bought a MS fingerprint reader w/ digital password assistant,
and immediatly tried and tried to beat it or give access without a
actual finger and I have failed. I have no idea why Microsoft is so
learly to stand behind the product, they at every chance they can warn
this is only a novelty device. I even disassembled the bin file that
stors the actual passwords and print references, and there well
encypted, even knowing the pass and username i could only crack the
last 5. I tried several fake prints ranging from silly putty, to
leaving a nice thick print on the lense, to copyies of all sorts, im
not a electronics wiz but it appears it reads the temp of the print
aswell, I did get it to read and fail a dolls finger with my print
(reversed twice) and transfered via crazy glue fumes. The program
automatically makes any existing passwords less than 11 characters 11
char exactly by adding to the end, seperated with a ALT 0160 (a space
similar to acii20) the ONLY weakness I have found is another user that
has access with admin rights can fast switch to another user by
modifing the hex value and pointer offset to log you into a
alternative account, unless that account is encrypted, or (make my
files private) and the favorites are all temp, and history are mine,
maybe just a bug on my side, but heck ive cracked DTV, bypassed
DVDxCopy registration, and done handshakes with the shuttle, why does
Microsoft not back this product? as far as I can see its passed my
security tests, not only that one can set very complicated strong
passwords and not have to remember them, the reader will, this is an
advantage expecially since 90% of people use passwords that are common
to something that another person would know, ie birthday, dogs name,
mode of computer, fav colour, girlfriends or kids name ect,, am i
overlooking something so sinister im blinded with a very easy bypass,
i get the feeling microsift knows it but i will find it sooner or
later, any opinions??
and immediatly tried and tried to beat it or give access without a
actual finger and I have failed. I have no idea why Microsoft is so
learly to stand behind the product, they at every chance they can warn
this is only a novelty device. I even disassembled the bin file that
stors the actual passwords and print references, and there well
encypted, even knowing the pass and username i could only crack the
last 5. I tried several fake prints ranging from silly putty, to
leaving a nice thick print on the lense, to copyies of all sorts, im
not a electronics wiz but it appears it reads the temp of the print
aswell, I did get it to read and fail a dolls finger with my print
(reversed twice) and transfered via crazy glue fumes. The program
automatically makes any existing passwords less than 11 characters 11
char exactly by adding to the end, seperated with a ALT 0160 (a space
similar to acii20) the ONLY weakness I have found is another user that
has access with admin rights can fast switch to another user by
modifing the hex value and pointer offset to log you into a
alternative account, unless that account is encrypted, or (make my
files private) and the favorites are all temp, and history are mine,
maybe just a bug on my side, but heck ive cracked DTV, bypassed
DVDxCopy registration, and done handshakes with the shuttle, why does
Microsoft not back this product? as far as I can see its passed my
security tests, not only that one can set very complicated strong
passwords and not have to remember them, the reader will, this is an
advantage expecially since 90% of people use passwords that are common
to something that another person would know, ie birthday, dogs name,
mode of computer, fav colour, girlfriends or kids name ect,, am i
overlooking something so sinister im blinded with a very easy bypass,
i get the feeling microsift knows it but i will find it sooner or
later, any opinions??