-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Damian Gatabria wrote: > El s�b, 30-08-2003 a las 19:49, Frankie escribi�: > >>>-----Original Message----- >>>From: [EMAIL PROTECTED] >>>[mailto:[EMAIL PROTECTED] Behalf Of Damian Gatabria >>>Sent: Saturday, 30 August 2003 7:55 PM >>>To: [EMAIL PROTECTED] >>>Subject: Re: [expert] Password Question >>> >>> >>>El s�b, 30-08-2003 a las 18:24, Jack Coates escribi�: >>> >>>>On Sat, 2003-08-30 at 03:44, Damian Gatabria wrote: >>>> >>>>>El mi�, 20-08-2003 a las 16:55, Bryan Phinney escribi�: >>>>> >>>>>>On Wednesday 20 August 2003 10:24 am, Lawson, Jim wrote: >>>>>> >>>>>>>Okay So I just read an article that said mandrake 9.1 can >>> >>>reset any windoz >>> >>>>>>>password. Can any linux distro password for root or any >>> >>>other user be >>> >>>>>>>reset. Say if you forgot it? >>>>>>> >>>>>>>James S. Lawson >>>>>>>Network Administrator >>>>>> >>>>>>The only way that I know of to do this is to bring the >>> >>>computer up in Single >>> >>>>>>User mode and reset root password from there. You should >>> >>>be able to do that >>> >>>>>>by putting options in Lilo at boot to bring up Linux in >>> >>>single user mode. >>> >>>>>>If you have password protected Lilo, I am not sure that you >>> >>>can reset the root >>> >>>>>>password without some type of reinstall. >>>>> >>>>> >>>>>How do you password protec Lilo? :o)))))))))) >>>> >>>>you put a password in /etc/lilo.conf and run /sbin/lilo. >>>> >>>>Users must then enter the password in order to boot any kernels listed >>>>by lilo. It isn't used all that much to my knowledge -- laptop users >>>>generally use the BIOS password, desktops users generally don't use boot >>>>passwords, and servers need to be able to reboot without physical help. >>> >>>Yet, i hate the fact that cracking the admin password in Win2k is >>>harder than in Linux... :o/ >>> >> >>Using linux single to reset the password is not cracking it.. >>Since you can't find out what the old password was, you are just >>creating a new one. > > > I know, sorry for not expressing myself correctly. > The point is, in windoze, if i want to change the admin > password, there's two ways: > > 1) cracking te sam file. This is a rather long process and > requires third-party software. >
Breaking into the registry or a sam file is trivially easy using a Linux boot disk made for the purpose. I have done it for people several times. It doesn't take much longer or more effort than just waiting for it to boot. > 2) Booting with a DOS diskette, load third-party NFTS-dos > drivers, and move around a couple of files so i get a user > manager instead of a login prompt. This is a tricky process > and you risk fubaring the system. > > this means that the one aspect in which windows is > far better from a security standpoint is protecting > the admin password, since in Linux you only have to > boot in single user mode.. it's sad, but true. > It's neither sad nor true. A Linux system can only be booted into single user mode if you have it setup that way, although most are set that way by default for convenience. Having physical access to a machine means that there isn't much security, aside from encrypting the filesystem. This is why most consider the ability to boot into single user from the console to not be a security risk -- it requires console access. Breaking into a Linux box w/o single (or init=...) is much harder than cracking open an NT, 2000 or XP box. But once you open a box or boot a different kernel or OS on a box, all bets are off. The only way to protect your system (data) is through decent encyption. - -- KevinO "If truth is beauty, how come no one has their hair done in the library?" - -- Lily Tomlin -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE/UZoIWOfRC7Rnmv8RAl4CAJ9X/tGM61lkvL11ENlDcP0cQVCnCwCeLr8S Nnhn3QXGXKNinxkABQudk4o= =mkJ1 -----END PGP SIGNATURE-----
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
