School Days
"The best years of our lives," somebody lied. Tell us the funniest thing that ever happened at school.
( , Thu 29 Jan 2009, 12:19)
"The best years of our lives," somebody lied. Tell us the funniest thing that ever happened at school.
( , Thu 29 Jan 2009, 12:19)
« Go Back
None of the teachers seemed to understand IT...
*unlurk*
The IT people didn't bother making the image that was displayed on the log in screen read only.
The networked folder that contained teacher's accounts was read only, but still gave a list of teacher's usernames. So a bruteforce tool that used the web folders was easy to make. Out of the 70 or so teachers, 17 used "password", "123456" or "qwerty" as their password. Using a teacher account to remote control other student's PCs was inevitable. Later, I found that a test account with basic admin powers also had "password" for a password. Unlimited printer credits and banning people I didn't like at will was most enjoyable.
*relurk*
( , Sat 31 Jan 2009, 0:17, 8 replies)
*unlurk*
The IT people didn't bother making the image that was displayed on the log in screen read only.
The networked folder that contained teacher's accounts was read only, but still gave a list of teacher's usernames. So a bruteforce tool that used the web folders was easy to make. Out of the 70 or so teachers, 17 used "password", "123456" or "qwerty" as their password. Using a teacher account to remote control other student's PCs was inevitable. Later, I found that a test account with basic admin powers also had "password" for a password. Unlimited printer credits and banning people I didn't like at will was most enjoyable.
*relurk*
( , Sat 31 Jan 2009, 0:17, 8 replies)
Rm
God Bless RM and their crap 'connect' software... more security holes than the Gaza border...
( , Sat 31 Jan 2009, 0:31, closed)
God Bless RM and their crap 'connect' software... more security holes than the Gaza border...
( , Sat 31 Jan 2009, 0:31, closed)
RM part deux
Glad we weren't the only school to suffer that. I played around with it in 2000, and you could tweak the login picture back then, too. (But then you could create a shortcut to Explorer.exe in any folder and browse to your heart's content, so security wasn't their strong point anyway)
( , Sat 31 Jan 2009, 2:30, closed)
Glad we weren't the only school to suffer that. I played around with it in 2000, and you could tweak the login picture back then, too. (But then you could create a shortcut to Explorer.exe in any folder and browse to your heart's content, so security wasn't their strong point anyway)
( , Sat 31 Jan 2009, 2:30, closed)
:)
I found a similar flaw. You could use WMP to open up a browse files dialog which could be used to view the folder structure of C:\ and the networked drives. That could be used to open up explorer which would have access to the network.
( , Sat 31 Jan 2009, 13:09, closed)
I found a similar flaw. You could use WMP to open up a browse files dialog which could be used to view the folder structure of C:\ and the networked drives. That could be used to open up explorer which would have access to the network.
( , Sat 31 Jan 2009, 13:09, closed)
Years ago, when 95 was all the rage
We were on an IT course - thus had VB installed.
We learned a fair bit by writing our own RM Login screen, which captured ur pass - but logged in too (no suspitions!)
Also get free print credits by locking the user file by a repeated read/write request - the RM tool would never be able to write as you gained write privaledge when it unlocked it.
Lastly, the old admin pass was letmein - so you could edit your account privs from there anyway.
It's a shame I went on to learn so much more later - as what I know now would have been way more fun to use back then.
( , Sat 31 Jan 2009, 14:18, closed)
We were on an IT course - thus had VB installed.
We learned a fair bit by writing our own RM Login screen, which captured ur pass - but logged in too (no suspitions!)
Also get free print credits by locking the user file by a repeated read/write request - the RM tool would never be able to write as you gained write privaledge when it unlocked it.
Lastly, the old admin pass was letmein - so you could edit your account privs from there anyway.
It's a shame I went on to learn so much more later - as what I know now would have been way more fun to use back then.
( , Sat 31 Jan 2009, 14:18, closed)
VB...
We still used VB6 in A Level computing... My coursework last year was coded in it.
( , Sat 31 Jan 2009, 19:22, closed)
We still used VB6 in A Level computing... My coursework last year was coded in it.
( , Sat 31 Jan 2009, 19:22, closed)
We'll start with XP
if you unplug the network cable midway through logging in, you gain access to the computer, but with rather less restriction. banned from the internet? no problem.
( , Sat 31 Jan 2009, 20:00, closed)
if you unplug the network cable midway through logging in, you gain access to the computer, but with rather less restriction. banned from the internet? no problem.
( , Sat 31 Jan 2009, 20:00, closed)
But surely
You'd need the network cable plugged in to access the internet if its' run through the server?
( , Sun 1 Feb 2009, 20:36, closed)
You'd need the network cable plugged in to access the internet if its' run through the server?
( , Sun 1 Feb 2009, 20:36, closed)
« Go Back