|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: NT Screen Saver Password Protect Bug
- To: NTBUGTRAQ
LISTSERV.NTBUGTRAQ.COM - Subject: Re: NT Screen Saver Password Protect Bug
- From: David LeBlanc <dleblancISS.NET>
- Date: Fri, 27 Mar 1998 13:58:27 -0500
- Comments: To: Stewart Berman <Stewart.BermanBANKERSTRUST.COM>
- In-Reply-To: <199803271245.HAA10509loki.iss.net>
- Reply-To: David LeBlanc <dleblancISS.NET>
- Sender: Windows NT BugTraq Mailing List <NTBUGTRAQLISTSERV.NTBUGTRAQ.COM>
At 11:05 3/26/98 -0500, Stewart Berman wrote: >Breaking into to a logged on user by renaming the screen saver allows an admin >to assume the user's identity without leaving a trace -- assuming they renamed >the screen save back to its original name later. Not true - if you're really paranoid, you'll monitor all the system files for writes, and the renaming would leave an audit trail. ----------------------------------------------------------- David LeBlanc | Voice: (770)395-0150 x138 Internet Security Systems, Inc. | Fax: (770)395-1972 41 Perimeter Center East | E-Mail: dleblanc
- Prev by Date: Re: What does "map" mean in this context?
- Next by Date: Re: NT Screen Saver Password Protect Bug
- Prev by thread: Re: NT Screen Saver Password Protect Bug
- Next by thread: Re: NT Screen Saver Password Protect Bug
- Index(es):