Vulnerability Development mailing list archives
RE: Windows XP authentification
From: Shockro () aol com
Date: Sun, 08 Sep 2002 03:44:20 -0400
I had a similar problem. Scenario is as follows. I modified my group policies to include an intruder lockout (3 tries, half hour lockout). I rebooted, it worked fine. I used my computer for a couple days, it worked fine. I converted to NTFS. Upon the next reboot, my own account and my administrator account were both locked out. I hadn't even tried to log in, much less with the wrong password. I waited my half hour period and both accounts worked fine. I'm thinking that certain events trip *all* the alarms. Has anyone else noticed this? Ampster the hack
-----Original Message----- From: HalbaSus [mailto:halbasus () go ro] Sent: Friday, September 06, 2002 6:34 AM To: vuln-dev () securityfocus com Subject: Windows XP authentification Now I don't know if this is a vulnerability, a feature or a bug.. but it's certanly anoying. On my home PC I have Windows XP and FreeBSD 4.6. Yesterday XP crashed because of a scandisk process (on somedoy's else hdd). I removed the other hdd and booted windows XP... "Your password has expired and must be changed" But... Neither the Administrator account's password or my user password didn't worked. Making imposible to log in. I booted in FreeBSD mounted the windows drive and everything seems fine... BTW, I instaled Windows XP as an upgrade to a previous windows 98 could this be the problem ? Does anybody know where the password file is located ? Does anybody know what could have caused this ? (maybe the password file got damaged (yet scandisk and fsck did not reported any damaged files)) -- ------------------- Proud member of PentaGuard "Making the net a safer place since 1998"
Current thread:
- Windows XP authentification HalbaSus (Sep 06)
- Re: Windows XP authentification Chris Carey (Sep 07)
- Re: Windows XP authentification Jonathan Bloomquist (Sep 07)
- <Possible follow-ups>
- RE: Windows XP authentification Shockro (Sep 08)
- RE: Windows XP authentification Thor Larholm (Sep 10)