On Tue, Jun 06, 2000 at 09:39:25PM -0600, Philippe Moutarlier said:
> "CH" <[EMAIL PROTECTED]> writes:
>
> > That is a real big security hole if it were used in business. All you would
> > have to do is reset if you could not shutdown -r without being root or
> > equivalent privilige. (Am I right?) Is there a way to block "linux single"
> > command if desired as long as you have root password saved in safe place? I
> > am not a business owner so it does not apply to me but it makes me wonder.
> > It is not possible to log in WinNt without the administrative password,
> > correct?
>
> No, but somebody with physical access could REINSTALL NT without
> destroying any "sensitive" data. This is an old debate which seems
> to boil down to a single point : physical access is insecure access.
> period.
>
<snip>
You can boot NT from a DOS diskette, grab the sam file and run
lophtcrack on it to get the admin password. If the sam is on NTFS,
there's a small DOS program that you can run to make the NTFS drive
readable.
Cheers,
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
