Posted on http://freaky.staticusers.net/ Date: Sat, 11 Dec 1999 13:53:49 -0600 From: Xeno Subject: At ease 5 -------------------------------------------------------------------------------- OK now I do realize that with programs like disease atease 3 and below was easy to hack but I would like to say that I have found 5 to be amazingly secure. The only read hole is that netscape thing and technically that's just doing what it's supposed to and it would technically bypass security on any secure thing that has a browser. My school used to use at ease 5 and the only way around it was a start up disk. It may also be that as it grew out of popularity less people tried to hack it but I just thought I'd tell you it's pretty secure. Also I thought I'd share a little tip that has helped me out immensely. As you probably guessed by the fact that we still use at ease, we have pretty old macs. I don't know how widespread the use of this thing is but we have a remote administration application called Network Administration, it has an extension on every computer which allows the mac to be taken over, or just remotely viewed, but you can also copy files to/from computers remotely. Now normally there should just be a little app on the comp that sets the preferences as to what the administrator can do on the comp you are at. Well I got to see the instruction manual one day and found that the default password is xyzzy. The admins at my school left that on there, so now when I'm logged on from a start up disk I can set it so they can't observer/take over my machine. But now of a few of the machines scattered throughout the school the administration app is on them for some reason, and you guessed it, it still is the default pass. So this combined with the fact that I found a glaring hole in the windows machines they just got for free means I have the ability to have full access at every comp I sit down at as well as remote administration at mac machines(heck I even can administer different schools in our district once I soc eng the pass for the middle school and elementary schools. And they are going to be purchasing something like network administrator for the peecees soon and I already know how to disable it. OK that was a tangent, I just wanted to submit that the default password for Network administrator was xyzzy incase other people wanted to check it out if their system is defaulted. See no one ever really uses it because our admins are too busy checking out the stock stuff I got them hooked on. So I changed the pass on the machines and I doubt they'll ever get around to finding out(heck I'm still using the logon from a kid who graduated last year who's admin acct they haven't deleted) take it easy. Hope this helps Posted on http://freaky.staticusers.net/