S
sinner man
Has MS sent out a fix for the flaw whereby one can access a
password-protected XP system
by using a Win2000 CD ?
password-protected XP system
by using a Win2000 CD ?
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
D
David Jones
A cursory KB search doesn't reveal anything, but I didn't
look that hard.
Why is this such a problem? Using a Win2000 CD requires
physical access to the machine.
If your files aren't encrypted, and someone has physical
access to the machine, they can do whatever they want.
They can just install another OS, take ownership of the
files, and boom.
If they are encrypted, they won't be able to decrypt them
with a Win2000 CD.
So my question is - why does this matter to you so much?
look that hard.
Why is this such a problem? Using a Win2000 CD requires
physical access to the machine.
If your files aren't encrypted, and someone has physical
access to the machine, they can do whatever they want.
They can just install another OS, take ownership of the
files, and boom.
If they are encrypted, they won't be able to decrypt them
with a Win2000 CD.
So my question is - why does this matter to you so much?
N
nogo
Shouldn't the system (OS) itself be made secure against entry ? Is this
too much to ask ?
Just wondering why MS is taking so long to fix this after touting XP as the
end-all in OS security.
too much to ask ?
Just wondering why MS is taking so long to fix this after touting XP as the
end-all in OS security.
M
Manda Luyong
All I use is a FLOPPY to reset Admin password. Why even bother with Win2000
CD? Hardware security is a must.
CD? Hardware security is a must.
B
Bruce Chambers
Greetings --
That's not really a security flaw. If you don't have physical
security to start with, there are no other security measures that are
much good.
Bruce Chambers
--
Help us help you:
You can have peace. Or you can have freedom. Don't ever count on
having both at once. -- RAH
That's not really a security flaw. If you don't have physical
security to start with, there are no other security measures that are
much good.
Bruce Chambers
--
Help us help you:
You can have peace. Or you can have freedom. Don't ever count on
having both at once. -- RAH
M
Mike Kolitz
There is no way that software can make up for lack of physical security. If
the bad guys can get physical access to your computer, it's not your
computer anymore.
the bad guys can get physical access to your computer, it's not your
computer anymore.
A
Alex Nichol
nogo said:Shouldn't the system (OS) itself be made secure against entry ? Is this
too much to ask ?
Just wondering why MS is taking so long to fix this after touting XP as the
end-all in OS security.
You would need to boot the Win2000 CD - or some other bootable device.
So set the BIOS to boot Hard drive before CD (and preferably without CD
or floppy involved at all - only possible on some BIOSes) and then set
a password for access to the BIOS. To get round that would imply
getting into the case and using the jumper to clear the CMOS; and if
someone knows enough to do that he knows enough to use a screwdriver and
steal the drive.