| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 29059 | 2003-01-09 02:28:00 | Win 9x login security | bardin (1950) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 112242 | 2003-01-09 02:28:00 | Hi, how do I block access to a Windows 9x system? I've created several users with their own settings, but when I was testing it all I needed to do was enter in ANY new userid / password combo and it set up a new profile and logged in to the system, with full access to the drives and control panel etc. I assume it just applies the default profile settings from somewhere. Do I need to use the system policy editor, and remove most of the permissions from the default profile? Or is there a way to totally block non-recognised logins? I don't really want annoying people coming along and wasting disk space with dumb profiles they'll never use again. |
bardin (1950) | ||
| 112243 | 2003-01-09 02:36:00 | Just wait til Graham Lees sees this post* ;) My understanding is that Win9x is not designed for security :( *GL is one of our resident linux experts :D :D :D |
Shroeder (492) | ||
| 112244 | 2003-01-09 02:36:00 | Im pretty sure there is a way to set it up so that it comes up with a list at the begining of login, Ive done it once, but that was using Super Rabbit Magic Set (http://www.superrsoft.com) and I cant remember how I did it. I then proceeded to delete all the extra accounts Id made, including the admin, so I had none.. :( Check out super rabbit, there is a way to do it using that, I just cant remember how sorry :) Cheers Chilling_Silence |
Chilling_Silence (9) | ||
| 112245 | 2003-01-09 02:38:00 | > Just wait til Graham Lees sees this post* ;) > > My understanding is that Win9x is not designed for > security :( > MMm . . . . Yeah, and you can bypass the startup security I mentioned before by booting into safe-mode and adding a new user, restart as normal and you're in, but there are still a lot of people out there who do not know how to get into safe mode :) |
Chilling_Silence (9) | ||
| 112246 | 2003-01-09 02:41:00 | Win 9x login security = oxymoron Microsoft security = oxymoron etc ]:) ]:) ]:) ]:) |
Shroeder (492) | ||
| 112247 | 2003-01-09 02:51:00 | It was with suprise and delight that I clicked on this article's link... a mere 10 mins after posting it, and four replies already. Yay! Problem solved. Sweet. But no, just more preaching to the converted (I KNOW I KNOW!!) Useless! You're all fired. ;) I asked my co-worker, and all he came up with was "Dunno. Use 2000." Doh. |
bardin (1950) | ||
| 112248 | 2003-01-09 02:57:00 | I use this method from Winguides, works for me . Also set a boot up password in your cmos or bios settings . Force Users to Logon to Windows (Windows 95/98/Me) Category: Home > Security > Login and Authentication Usually users can simply press 'Cancel' at the Windows logon box to bypass the login process and gain access to the local computer . This tweak will logout the user if the authentication fails or the user clicks Cancel . Like all registry tweaks, this is for advanced users, please do not attempt to try this if you are not confident with the Windows registry and recovering from any subsequent problems . Firstly, setup your computer for multiple users by using the 'Users' wizard in the Control Panel . Create a new user in addition to any existing users, then restart Windows and login as the new user (this will become your new default account) . While you are logged in open your registry and expand the [HKEY_USERS] key, there should be several sub-folders including " . DEFAULT", "Software" and a folder corresponding to the new username you created above . Open the key listed below (if the 'Run' key does not already exist then create it), and create a new string value named "NoLogon", and set the value to equal "RUNDLL32 shell32,SHExitWindowsEx 0" . Log-off and now when you login using the new username you should gain access to the desktop, but when you press Cancel or enter the wrong password the desktop should partially load, and then the computer should return to the login screen . Note: If you have problems with this tweak, press F8 while the "Starting Windows 98 . . . " boot-up message is showing, and select Safe Mode . Then open your registry and delete the "NoLogon" key created above . Note: Once this tweak has been implemented any subsequent users accounts that are created will inherit the 'NoLogon' value and therefore reboot when they login . To avoid this; when you first create a new user, open the key below for the newly created account name (e . g . [HKEY_USERS\jdoe]) and remove the 'NoLogon' value . (Default) REG_SZ (value not set) NoLogon REG_SZ "RUNDLL32 shell32,SHExitWindowsEx 0" HKEY_USERS\ . DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Run Settings: User Key: [HKEY_USERS\ . DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Run] Name: NoLogon Type: REG_SZ (String Value) Disclaimer: Modifying the registry can cause serious problems that may require you to reinstall your operating system . We cannot guarantee that problems resulting from modifications to the registry can be solved . Use the information provided at your own risk . Last Modified: September 11, 2000 |
Danger (287) | ||
| 112249 | 2003-01-09 04:44:00 | Put the machine in a room. Lock the door. Throw away the key. That will be a bit more secure, but anyone who wants to break into a room can. Put an axe through the hard disk. More secure. There is no security in Windows 9x. Anyone who can open the box/boot the machine can break any security added on. Even boot passowrds in the BIOS. Anyone with access to the machine can get into any operating system. It's just easiest with WinDOS, because there was no attempt made to put security in. |
Graham L (2) | ||
| 1 | |||||