RE: Windows XP authentification

[Shockro () aol com]

I had a similar problem.  Scenario is as follows.

I modified my group policies to include an intruder lockout (3 tries,
half hour lockout).  I rebooted, it worked fine.  I used my computer for
a couple days, it worked fine.

I converted to NTFS.  Upon the next reboot, my own account and my
administrator account were both locked out.  I hadn't even tried to log
in, much less with the wrong password.  I waited my half hour period and
both accounts worked fine.

I'm thinking that certain events trip *all* the alarms.  Has anyone else
noticed this?

Ampster the hack

> -----Original Message-----
> From: HalbaSus [mailto:halbasus () go ro] 
> Sent: Friday, September 06, 2002 6:34 AM
> To: vuln-dev () securityfocus com
> Subject: Windows XP authentification
>
>
>
> Now I don't know if this is a vulnerability, a feature or a 
> bug.. but it's certanly anoying. On my home PC I have Windows 
> XP and FreeBSD 4.6. Yesterday XP crashed because of a 
> scandisk process (on somedoy's else hdd). I removed the other 
> hdd and booted windows XP... "Your password has expired and must 
> be
> changed"
> But... Neither the Administrator account's password or my 
> user password didn't worked. Making imposible to log in. I 
> booted in FreeBSD mounted the windows drive and everything 
> seems fine... BTW, I instaled Windows XP as an upgrade to a 
> previous windows 98 could this be the problem ? Does anybody 
> know where the password file is located ? Does anybody know 
> what could have caused this ? (maybe the password file got 
> damaged (yet scandisk and fsck did not reported any damaged files))
>
>
>
> --
> -------------------
> Proud member of PentaGuard
> "Making the net a safer place since 1998"