How secure is an XP Home Edition machine that has one user
with forced login and password protection (meaning, turning
the computer on sends it to the login screen, there's only
one account, and it's password protected).
By secure, I mean, can anyone access that computer other
than the user who knows the password? Can anyone else read,
access, copy, or otherwise alter files on the machine? I
guess I'm wondering if there's some backdoor way that
someone could get into my machine (say, through a command
line interface or something), by bypassing the XP login.
Essentially, I want to be the only one who can use my
computer (or see anything on it).
There are several different bootable CD's that will allow persons onto your
PC. Some of these are discussed here: http://www.broomeman.com/password/
--
------------------------------------------
Donny Broome
http://www.broomeman.com/tech/
------------------------------------------
"John Persico" <som...@microsoft.com> wrote in message
news:uhMo7Rf0...@TK2MSFTNGP09.phx.gbl...
Noone can access your account if the PC is at home,I think you understand...
All these programs,mentioned by Mr.Broom are more or less illegal.
Panda_man
" Let's beat malware black and blue "
" No new epidemics of all kind of malware -> Panda TruPrevent "
--
Larry Samuels Associate Expert
MS-MVP (2001-2005)
Unofficial FAQ for Windows Server 2003 at
http://pelos.us/SERVER.htm
Expert Zone- www.microsoft.com/windowsxp/expertzone
"Panda_man" <Pand...@discussions.microsoft.com> wrote in message
news:EE48F1F5-628E-46DE...@microsoft.com...
Sorry, bro, you're speaking on a subject you haven't researched.
--
------------------------------------------
Donny Broome
www.broomeman.com/tech
------------------------------------------
"Panda_man" <Pand...@discussions.microsoft.com> wrote in message
news:EE48F1F5-628E-46DE...@microsoft.com...
--
------------------------------------------
Donny Broome
www.broomeman.com/tech
------------------------------------------
"Larry Samuels" <la...@mvps.org> wrote in message
news:%23VJT1Xl...@TK2MSFTNGP15.phx.gbl...
"Donny Broome" <broo...@hotmail.DOTcom> wrote in message
news:C2j4f.64301$5l.5...@bignews6.bellsouth.net...
As the other OPs have stated if other people have physical access to
your machine there are ways and means (Bootable CDs, Linux diskettes
etc) that will enable people to remove the passwords used.
If you want people not to be able to see your data then use some form
of encryption such as the NTFS encryption built into XP, BUT, and a
very BIG BUT, remember to create a Recovery Agent and back up your
encryption keys and certificates to some form of external storage
because if you loose your keys your data is gone for good.
For more details on XP encryption methods enter XP encryption in the
search bar at http://support.microsoft.com/search/default.aspx
Are there any printed materials that give the full scoop on
XP encryption?
I did the search you specified, but the best article seems
to be
http://support.microsoft.com/default.aspx?scid=kb;en-us;308993,
which doesn't go into great detail.
"GreenieLeBrun" <Greeni...@hotmail.com> wrote in message
news:1129783498.9...@f14g2000cwb.googlegroups.com...
Set a strong password for it. In other words, use at least 8
characters, and make those characters a mixture of upper and lower case
letters, numbers, and special characters, such as *, $, _, !, @, or #.
Do *NOT* use easily guessed names, dates, etc.
> If someone boots your computer in Safe Mode and the
> administrator account is password protected, can they view
> files on the machine (if they don't have any of the programs
> you mentioned)?
>
Not unless he/she knows the password for the built-in Administrator
account.
--
Bruce Chambers
Help us help you:
http://dts-l.org/goodpost.htm
http://www.catb.org/~esr/faqs/smart-questions.html
You can have peace. Or you can have freedom. Don't ever count on having
both at once. - RAH
No.
> Do you unencrypt every time you use the computer?
No. The OS access the encrypted files seamlessly, if the logged in
user has permission to access the encrypted files. The
"decryption/encryption" process occurs in the background and is
virtually (there may be a very slight performance hit) invisible to the
authorized user.
> Do new files get encrypted automatically?
>
No. Only those files/folders that the user designates get encrypted.
> Are there any printed materials that give the full scoop on
> XP encryption?
Best Practices for Encrypting File System
http://support.microsoft.com/default.aspx?scid=kb;en-us;223316
Bear in mind, before proceeding, that EFS is not to be used lightly.
Should something go wrong with the PC that requires you to reinstall the
OS, and if the your encryption certificates and keys were not backed up
before the reinstallation, and the workstation isn't part of a domain,
those files are gone, for all practical purposes. Encryption works well
and there is no "back door" or hack to access the files. (Wouldn't be
much point to EFS if it were vulnerable.)
--
Larry Samuels Associate Expert
MS-MVP (2001-2005)
Unofficial FAQ for Windows Server 2003 at
http://pelos.us/SERVER.htm
Expert Zone- www.microsoft.com/windowsxp/expertzone
"John Persico" <po...@group.nospam> wrote in message
news:eBf4HxR1...@TK2MSFTNGP10.phx.gbl...
--
Larry Samuels Associate Expert
MS-MVP (2001-2005)
Unofficial FAQ for Windows Server 2003 at
http://pelos.us/SERVER.htm
Expert Zone- www.microsoft.com/windowsxp/expertzone
"John Persico" <po...@group.nospam> wrote in message
news:eoP%23kqW1F...@TK2MSFTNGP15.phx.gbl...
"Bruce Chambers" <bcha...@cable0ne.n3t> wrote in message
news:eqO0U3d1...@TK2MSFTNGP12.phx.gbl...
Log in as Administrator, right-click My Computer > Manage > Users and
Groups > Users > highlight Administrator, right-click and select reset
password.
> Would I use control userpasswords2 at the run prompt.
That's another viable means of getting to the right place.
> When the computer starts in safe mode, is it automatically
> started with the administrator account every time?
>
Only if that's the only user account on the computer.