Ross Finlayson expressed precisely :
Java is not JavaScript. Think Java Runtime Environment.
> I don't much know though about
> bash the stack / trash the instruction pointer
> compared to
> abuse the polkit and munge the autoproxy,
> in terms of abuses and crimes in information "devices".
>
> One time my friend and desk-neighbor had a screen-saver,
> it had a password. He stepped away one time and I broke it,
> but, I told him later that I'd done it.
>
> In one team the rule was if you ever came across your
> desk-neighbor's desktop open, you were to send an email
> from them "I left my desktop open". Otherwise the rule
> like in the OS group was "always lock your desktop
> when you leave it". This one guy had like a forty-character
> password, but this was the OS group and stuff like NT's system
> account and delegation basically had that they'd just turn UAC off.
The Human Resources Manager where I used to work was administrator on
the system. She logged out (or so she thought) and walked away one time
and the screen dialog said something about a program still running.
I got back to her desktop and left her a little anonymous text file
instead of doing the sethc.exe hack.
https://superuser.com/questions/732605/how-to-prevent-the-sethc-exe-hack
==========================================
There is an exploit that allows users to reset the Administrator
password on Windows. It is done by booting from a repair disk, starting
command prompt, and replacing C:\Windows\System32\sethc.exe with
C:\Windows\System32\cmd.exe.
When the sticky key combination is pressed at the logon screen, users
get access to a command prompt with Administrator privileges.
[Edit by me -- Actually gives a "system" user account.]
This is a huge security hole, makes the OS vulnerable to anyone with
even the slightest IT knowledge.
===========================================
They later got severely hacked remotely and computer security was the
buzzword for some time afterward. Yep, we had to make sure the door to
the computer room was locked when we left, but it didn't close properly
so locked or not it didn't actually latch closed. People who were
granted access often left it unlatched purposefully for ease of access.
> Myself I don't much even remember passwords and rely on,
> "muscle memory", for passwords.
I have a mental password building system which relies on reminders.
Something like LogWM1189 for Waste Management, LogBOA1189 for BoA,
LogOD1189 for Microsoft One Drive, LogAID1189 for Apple ID etcetera.
No, these are not what I use, but something similar where the dialog
asking for the password also gives me the hint for the variable part.
> A big problem in computer crimes is so many "grey", areas,
> and all sorts things what appear to be crimes.
Especially where Intellectual Property (IP) is concerned.