On Wed, 30 Mar 2005 08:02:26 -0500, Wayne wrote:
>At 07:04 AM 3/30/2005, Stephen Bird typed:
>>I wondered what was done to protect the system over lunch
>>absent a shutdown.
>I don't recall that last part being stated.
In my original message: On Mon, 28 Mar 2005 17:39:25 -0500, I wrote:
"Could, for example, a curious/malevolent colleague gain access over lunch
assuming no prior knowledge..." The _shutdown_ part came from follow-up
messages which indicate that accessing a system could be relatively easy if one
could reboot the system.
>>It seems, from various postings, that rebooting is required to get around the
>>Windows (screen saver) password
>I don't recall saying that just why bother when rebooting is so easy.
Because rebooting would bring the need to unlock the MBR which may not be
possible.
>> and that even protecting the BIOS isn't safe.
>
>Who said this, not Rick or I ?
Andy said: "Even password protecting the BIOS won't keep us out, that only
needs an extra reboot to fix."
>Your definition is completely different than mine then. I would never try
>just rebooting the HD especially when I know that more than likely that
>Windows is pwd protected. IMHO that is reasonably safe. The product PCG
>EPHD while it may add a layer of security I don't see that it does much of
>anything that using NTFS partitioning doesn't do already ...
Not everyone uses NTFS, although that is certainly an option. Off hand I don't
know the degree of encryption, if any, used by NTFS.
>>I haven't heard that it is possible to circumvent the Windows screen saver
>>password without rebooting, so perhaps the PCG approach makes sense.
>
>I never stated that it wasn't possible & have heard that people can break
>the Windows Screen Saver PWD.
I don't think I was suggesting that you said it was or wasn't possible, but just
that I hadn't heard that it was... My original question, although perhaps poorly
expressed, was whether people could break through the Windows Screen Saver
password during lunch etc.
>Again why should I try when I already have a
>better tool literally in my pocket. In the old days all one had to do was
>edit the Control.ini file to get rid of the Screen Saver PWD.
Apparently in the old days PC Guardian provided their own passworded screen
saver to counter the limitation you mention.
>Another problem is that most people just walk away from their system & do NOT
>turn
>turn on the screen saver before leaving their desks therefore all one has to
>do is slip
>onto the system before the screensaver kicks in. <snip>
Agreed....
>I'm taking a chance here but I feel like what I've written has been almost
>completely ignored ...
Not so.... I simply wanted to know if WinXP screen saver password protection was
valid/useful during a lunch break while the system might be unattended. I now
know that it is possible to access a system if one is able to gain access before
the password protection kicks in (assuming the owner/user does not use the
Windows key + L) or if one is able to reboot and thus gain access by using a
variety of techniques. A reboot approach might be limited by an encrypted MBR
and/or encrypted partitions.
--
cheers, Stephen
--
----------------------------------------
ALL messages to the list MUST include a descriptive subject.
To Change your email Address for this list, send the following message:
CHANGE WIN-HOME your_old_address your_new_address
to: [EMAIL PROTECTED]
Note carefully that both old and new addresses are required.
