Robert Firth wrote:
> Yes pretty pointless. It allows you to access the computer again later.
> You already have to have access. I propose a better secury leak. Go to
> control panel, users profiles. Setup a second administrator account.
> Bam, you can access the account later. Full access through that
> account. I have to admit, the magnifier.exe thing is pretty sneaky
> though. This is only a security threat if your live in a community
> environment and forget to lock your computer.
>
> Physical security is just as important as anything Microsoft can do. If
> you leave your computer logged in for anyone to use, that is a security
> threat that you created. The whole point of an administrator account is
> to have access to everything. That same user that messes with the
> windows\system32 folder could also install a rootkit or spyware on your
> computer. A physical person can easily bypass all the UAC prompts, do
> whatever they please. Heck, they could plug in a USB key and copy all
> your private data straight to it, or delete it.
>

Yes, it always amuses me when people are "outraged" that Windows can be
accessed by booting with other operating systems, etc. As you have so
well explained, *any* computer running *any* operating system is
vulnerable if there is physical access by a skilled person with a bit of
time and a few tools. I can get into my Linux and OS X systems, too.


Malke
--
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"
MS-MVP Windows - Shell/User