NT insecurity

Matthew Ghio ghio at myriad.alias.net
Sat Nov 16 17:04:30 PST 1996


"Chris Adams" <adamsc at io-online.com> wrote:
> Given the recent comments about insecure machines, I thought it was
> interesting to note that you can clear *every* password on an NT box
> by using a diskeditor to corrupt the password file (Boot off of a floppy
> and use NTFSDOS if you have to).  It'll reboot several times and then
> you'll be allowed to login.

You can do the same with every other operating system that doesn't have
an encrypted filesystem; Microsoft was just the only company dumb enough
to claim their filesystem was secure because they didn't think that
anyone would reverse-engineer it.






More information about the cypherpunks-legacy mailing list