I want to stop ANYONE using the PC when i`m not there.
Ideally a password i can put in on start up that only i know.
And if its not put in then NOTHING comes on.

I`ve nosed about in the windows 98se control panel at
Users
Passwords

and i have it starting with a password box but if i press "cancel" it loads up windows ANYWAY ???
I dont know if it then restricts certain functions then but anyone any clear guidelines to achieve this please?

(this message will self-destruct in 10 seconds)
.
.
.
.
.
.
.
.
.
.

(bugger)

[ 07-02-2002: Message edited by: dave mca ]

You can password protect the BIOS which wont let the PC even boot without them entering a password.

There are some default passwords that unlock these, or you can reset the CMOS to get round it, but it's good enough for most.

Jezz.

Install Windows 2000 pro and you can set up folders for access control. I think NT4 does this too, you could even keep 98SE and have both - dual boot.

If you wanna be FREAKISHLY obsessed with security, you can passowrd BIOS, simple and solid.. logon password, and finally screen saver password. Oh and like the man said, if you got 24/7 connection to Inet, get ird of guest account (disable) change your administrator aco**** to "System Admin" or something and lock EVERYTHING down to either this account or you logon account. :)

Hope this helps.
Oh, DONT!!! run NETBIOS over TCP/IP (in your TCP/IP settings!! This will show EVERYONE connected to you what devices you have plugged in.. and basically gives them a gaping hole to waltz into your system with.

OR.. another solution.. install RedHat linux 7.2! lol

Originally posted by Richy_Boy:
<STRONG>OR.. another solution.. install RedHat linux 7.2! lol</STRONG>

Remember not to leave the OS CD next to the server or people can still waltz in!

(YES I DID THIS ONCE) :D :rolleyes:

[ 08-02-2002: Message edited by: BeanS14 ]

BIOS Password, that should stop most people looking at your porn, when the machine is off.

If you must use the 9x kernal, have a look at these:
http://www.winguides.com/registry/display.php/130/
http://www.winguides.com/registry/display.php/181/
http://www.winguides.com/registry/display.php/629/

But ultimately, using Fat16 or Fat32, you are insecure. You need NTFS, not that that is completely secue, but a damn site better than FAT, against most people with phsyical access to your machine.

Move to NT/Win2K or XP. Then if you want security advice, let me know. :)

Do what Richie said, disable Netbt. I don't kbnow if RestrictAnonymous rgistry key will work under 9x, if it does use it. Stops null sessions.

This is handy if you want to allow peeps limited access:
http://www.winguides.com/registry/display.php/113/

I could go on forever..... but I won't :)

Arrh yes the old cheeky password protected screen saver message trick backed up by the bios password gig (when they reboot to get rid of the cheeky screen saver message) is always fun to set up in the local branch of Currys, Comet etc etc.

Originally posted by BeanS14:
<STRONG>

Remember not to leave the OS CD next to the server or people can still waltz in!

(YES I DID THIS ONCE) :D :rolleyes:

[ 08-02-2002: Message edited by: BeanS14 ]</STRONG>

Password protecting the bios and disabling all boot options apart from the HDD will stop this, and linux boot disks and NTFS boot disks being used. Provided some fecker doesn't reset your cmos throught the motherboard. But I don't think anyone would be that desperate to hack into someones home machine

[ 09-02-2002: Message edited by: JohnD76 ]

Originally posted by JohnD76:

Do what Richie said, disable Netbt. I don't kbnow if RestrictAnonymous rgistry key will work under 9x, if it does use it. Stops null sessions.

[/QB] I am using Win2K Pro, how do you disable Netbt ?

Bear with me I'm using XP now.. but right click on your network neighbourhood icon, and then go into properties.. It shout have ocal ethernet connection or something there. Double click on this and it will open a nice little window showing how many packets(?) have come in and out of this connection and how long your windoze boz has bee nrunning between restarts (no more than a day)

Now click on properties again, and then it will list out all the protocols which the deviceis using.. such as TCP/IP, file and printer sharing, windows logon thingy maybe NETBIOS.
Get RID of this straight away (unless you have to link your machine to a 9x machine), and then go into TCP/IP settings. I think its an 'advanced' button at th ebottom you need to click, and on the second or third tab along (maybe DNS?) there will be 3 options in regards to using Netbios over TCP/IP. MAKE SURE YOUR NOT!

Think this is about right.. round of applaus if I am, cos I aint touched Win2k in weeks! :)

..I thankyou. :D

Originally posted by JohnD76:
<STRONG>BIOS Password, that should stop most people looking at your porn, when the machine is off.

If you must use the 9x kernal, have a look at these:
http://www.winguides.com/registry/display.php/130/
http://www.winguides.com/registry/display.php/181/
http://www.winguides.com/registry/display.php/629/

But ultimately, using Fat16 or Fat32, you are insecure. You need NTFS, not that that is completely secue, but a damn site better than FAT, against most people with phsyical access to your machine.

Move to NT/Win2K or XP. Then if you want security advice, let me know. :)

Do what Richie said, disable Netbt. I don't kbnow if RestrictAnonymous rgistry key will work under 9x, if it does use it. Stops null sessions.

This is handy if you want to allow peeps limited access:
http://www.winguides.com/registry/display.php/113/

I could go on forever..... but I won't :)</STRONG>

HOW DARE YOU :mad:
(hits John276 in face with gloves)
I challenge you to a dual you rogue !!!(pssst bring any good porn ya got :D )

haha tis done
A cloud of Bios now descends over my PC when i is not present and no-one NO-ONE shall pass mwahahahahahahahahahah :D

Aha!!!!

I see why my 5 star rating has now all of a sudden plummeted to 3 stars!! Avatyou!!!!! Rapscallion!!! Enguard, my honour is at stake here!

:D

What also might be said about this:

If you want to stop people from doing dictionary attacks you have to use Passwords which the program can't enter...
IE

Use some sort of ALT+ 013
or ATL + 010
On the numberic keypad.

This inserts Carriage Return or Linefeed into your password and no program like Lophtcrack and the like will be able to determine your password.

Am I good or what ??? :D ;)

Want my stars now!!!! :)

[ 12-02-2002: Message edited by: Christian ]

Originally posted by JohnD76:
<STRONG>Aha!!!!

I see why my 5 star rating has now all of a sudden plummeted to 3 stars!! Avatyou!!!!! Rapscallion!!! Enguard, my honour is at stake here!

:D</STRONG>

You lost that ages ago mate when you slept with that rugby team :D :D :D
(JohnD76`s jaw drops open in horror at the revelation and dave takes the advantage and stabs him in the tongue with his trusty sword) :D

Aaaaaaaah the glittering, the glamour..
:)

Cheers to whoever voted

Can't you simply add these keys to your dictionary and then try a dictionary attack or hybrid brute force attack?

It is always worth using strong passwords though. But I don't think this kind of thing is going to happen to dave. I am sure his collection of porn isn't as good as mine!! :p

Besides, he is using the dread 9x Kernel :(

Top tip though. Another top tip agains Lophtcrack is to have your passwords as multiples or 7, since Lophtcrack splits the password into groups of 7 "characters". EG If you have a password of 12345678, you will noteice that 8 is always got more first, since the pw is split into 1234567 and 8 padded out to make 8,0,0,0,0,0,0 (zeros and commas for illustrative purposes).

It is worth using syskey, but pwdump2 will enable you to export the oneway hashes and load them into Lophtcrack for attacks. LC3 may do this I am not sure, haven't really used it much, or forgotten and passwords or had anyone really pee me off :)

Cristian, got any more top tips? if so can you email me them since this thread will get a little boring to most peeps.

Cheers,

John.

[ 13-02-2002: Message edited by: JohnD76 ]

Originally posted by JohnD76
BIOS Password, that should stop most people looking at your porn, when the machine is off.

If you must use the 9x kernal, have a look at these:
http://www.winguides.com/registry/display.php/130/
http://www.winguides.com/registry/display.php/181/
http://www.winguides.com/registry/display.php/629/

But ultimately, using Fat16 or Fat32, you are insecure. You need NTFS, not that that is completely secue, but a damn site better than FAT, against most people with phsyical access to your machine.

Move to NT/Win2K or XP. Then if you want security advice, let me know. :)

Do what Richie said, disable Netbt. I don't kbnow if RestrictAnonymous rgistry key will work under 9x, if it does use it. Stops null sessions.

This is handy if you want to allow peeps limited access:
http://www.winguides.com/registry/display.php/113/

I could go on forever..... but I won't :)

Yeah cheers all.
done the BIOS password but i want to upgrade to One of the more modern operating systems like suggested in this thread for increased security.
Anyone got any copies of them and i`ll give you a few quid or somehin.
I`ve got all the latest compilation cd`s here too .
Cream
Ministry
Gatecrasher
Euphoria
Send u all these on cd if would prefer in exchange.
Its only for my use so as long as it installs for my use i`m happy.
I`d like windows xp if poss.
Or can anyone direct me to the cheapest place to acquire it?
Can i run 2 operating systems?
One of which is hidden ?
(sneeky bast*rd arent i hehe)

Cooooome ooooooon ! :(
Free stuff
Free stuff
Free stuff
(marches round with placard)
Freeeeeeeeeeeee stufff (stamps feet)
:mad: