Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Windows 2000 Administrator lockout

From: "Ferino Mardo" <RMardo () ALJOMAIHBEV com>
Date: Thu, 19 Aug 2004 13:29:10 +0300


...snipped


   In the new Windows install path's SYSTEM32 directory (i.e., 
   C:\WINNT.FIX\System32) copy LOGON.SCR to LOGON.SCR.ORIG.  In
   the same directory, copy CMD.EXE to LOGON.SCR.

   Logout and boot the original Windows install.

   Wait for the screensaver timeout to expire (make sure you don't
   touch the keyboard or move the mouse until then).  A CMD.EXE
   window should appear on-screen, in the security context of SYSTEM.



Question: if I booted the original Windows install as suggested above, I
wouldn't get any CMD.EXE window when the screensave kicks in. shouldn't
the above steps be done on the original Windows' SYSTEM32 directory?

---------------------------------------------------------------------------
Computer Forensics Training at the InfoSec Institute. All of our class sizes
are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills of
a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.

http://www.securityfocus.com/sponsor/InfoSecInstitute_security-basics_040817
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: