Welcome to Vista Banter. You are currently viewing our boards as a guest which gives you limited access to view most discussions, articles and access our other FREE features. By joining our free community you will have access to ask questions and reply to others posts, upload your own photos and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact contact support. |
|
Security and Windows Vista A forum for discussion on security issues with Windows Vista. (microsoft.public.windows.vista.security) |
|
LinkBack | Thread Tools | Display Modes |
|
|||
HELP: Final Question About Hackers Stealing Files Via Wireless Net
Hello, my question is to verify if these statements are true,
I wanted to email these guys personally but I understand it's better to share this with everyone. The questions concern if hackers can break into my Vista computer and access the hard drive's files, if my laptop is wirelessly connected to an unsecured router (meaning they connect to the unsecured router, and connect to my laptop that's wirelessly connected to the router). Also, I have not shared any folders (so was wondering if with cracking admin access they could get around it). The first is by Gene E. Bloch, who said: "Even wihtout a password, someone with physical access to your computer couldn't get to the Administrator (it's not called super-administrator) account unless one of these is true: 1. The account is enabled (which it isn't by default), or 2. The person can log on to another account on your computer, either by knowing the password or by that account having no password. In this case he could enable the Administrator account. But see my disclaimer below. Disclaimer: I think the operation in #2 requires an Administrator account." First thanks Gene! Can you guys verify, is this true, meaning both statements are right? Secondly, Gene pointed out that, "I learned something I didn't know before - but it was from Russ SBITS. It was the thing about Ctrl-Alt-Del to bring up the Administrator logon, and it kind of invalidated my own post (boo hoo!). Now I have to figure out if I can do that even though my own account logs on automatically. " This was Russ' statement: "When you see the Login Prompt Do a Ctrl + Alt + Del and enter "Administrator" Password blank Then after you login as adminstrator. do another Ctrl +alt + Del and change the password then enter the Control panel / Users and create Secure passwords for each user." So now my question is, Gene said it invalidated his statement, or is he referring to something else? From what I understand, Russ is saying that if the Administrator account is not enabled or setup, someone can remotely just ctrl+alt+del and enable it like that? I'm probably misunderstanding this, can someone verify what he's talking about? Finally, I'm just trying to put my mind at ease to understand if a neighbor hacker can break into my Vista computer and access the hard drive's files, if my laptop is wirelessly connected to an unsecured router (meaning they connect to the unsecured router, and connect to my laptop that's wirelessly connected to the router). I accidentally left the connection unsecured (it's been secured) for 2 hours, and wondering if they could have broken in and accessed/transferred/stolen files that were stored on the hard drive. Is it possible? Thanks everybody for all your help! This will be my last post about this, but your responses will help me feel better! |
|
|||
HELP: Final Question About Hackers Stealing Files Via WirelessNet
john ha wrote:
Snipped... Finally, I'm just trying to put my mind at ease to understand if a neighbor hacker can break into my Vista computer and access the hard drive's files, if my laptop is wirelessly connected to an unsecured router (meaning they connect to the unsecured router, and connect to my laptop that's wirelessly connected to the router). I accidentally left the connection unsecured (it's been secured) for 2 hours, and wondering if they could have broken in and accessed/transferred/stolen files that were stored on the hard drive. Is it possible? Yes, it is possible. It's even easy if the purported hacker/cracker knows (or can detect) your computer's name. All WinNT-descended operating systems, of which Vista is one, has a built-in, albeit hidden, administrative "Share" of which any serious hacker/cracker would be aware. This is why, as I've already mentioned, the standard security practice is to rename the built-in Administrator account, set a strong password on it. Now, is it likely? Probably not. First of all, one of your neighbors would have to want to hack/crack others' computers, acquire the knowledge, skills, and tools to do so, and then want to get at /your/ files in particular. And then they'd have to do so during that two hour window when your wireless router was unsecured. -- Bruce Chambers Help us help you: http://www.catb.org/~esr/faqs/smart-questions.html http://support.microsoft.com/default.aspx/kb/555375 They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety. ~Benjamin Franklin Many people would rather die than think; in fact, most do. ~Bertrand Russell The philosopher has never killed any priests, whereas the priest has killed a great many philosophers. ~ Denis Diderot |
|
|||
HELP: Final Question About Hackers Stealing Files Via WirelessNet
john ha wrote:
Snipped... Finally, I'm just trying to put my mind at ease to understand if a neighbor hacker can break into my Vista computer and access the hard drive's files, if my laptop is wirelessly connected to an unsecured router (meaning they connect to the unsecured router, and connect to my laptop that's wirelessly connected to the router). I accidentally left the connection unsecured (it's been secured) for 2 hours, and wondering if they could have broken in and accessed/transferred/stolen files that were stored on the hard drive. Is it possible? Yes, it is possible. It's even easy if the purported hacker/cracker knows (or can detect) your computer's name. All WinNT-descended operating systems, of which Vista is one, has a built-in, albeit hidden, administrative "Share" of which any serious hacker/cracker would be aware. This is why, as I've already mentioned, the standard security practice is to rename the built-in Administrator account, set a strong password on it. Now, is it likely? Probably not. First of all, one of your neighbors would have to want to hack/crack others' computers, acquire the knowledge, skills, and tools to do so, and then want to get at /your/ files in particular. And then they'd have to do so during that two hour window when your wireless router was unsecured. -- Bruce Chambers Help us help you: http://www.catb.org/~esr/faqs/smart-questions.html http://support.microsoft.com/default.aspx/kb/555375 They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety. ~Benjamin Franklin Many people would rather die than think; in fact, most do. ~Bertrand Russell The philosopher has never killed any priests, whereas the priest has killed a great many philosophers. ~ Denis Diderot |
|
|||
Final Question About Hackers Stealing Files Via Wireless Net
"john ha" wrote in message
... [...] From what I understand, Russ is saying that if the Administrator account is not enabled or setup, someone can remotely just ctrl+alt+del and enable it like that? I'm probably misunderstanding this, can someone verify what he's talking about? http://www.mydigitallife.info/2010/0...ws-7-or-vista/ |
|
|||
Final Question About Hackers Stealing Files Via Wireless Net
"john ha" wrote in message
... [...] From what I understand, Russ is saying that if the Administrator account is not enabled or setup, someone can remotely just ctrl+alt+del and enable it like that? I'm probably misunderstanding this, can someone verify what he's talking about? http://www.mydigitallife.info/2010/0...ws-7-or-vista/ |
Thread Tools | |
Display Modes | |
|
|