|
|
|
No Security Without Physical Security
By: Larry Seltzer
2003-03-13
Article Rating: / 0
There are 0 user comments on this Windows story.
No Security Without Physical Security (
Page 1 of 2 ) Once an attacker has physical access to the computer, he almost certainly has access to the data on it, writes Security Supersite Editor Larry Seltzer. If so, the OS doesn't really matter.Very often well hear reports about a serious security vulnerability. We look into it, and theres a catch: In order to execute the attack, physical access to the computer is necessary.
You can safely ignore these alleged vulnerabilities: Without physical security, no system is secure.
If I can open the computer, I can remove the hard disk, put it in as the second drive in another computer and read the contents of the disk. Bye-bye, security. But its not usually necessary to open the box. I can boot the system off a floppy disk or CD-ROM and read the hard disk that way. Given such access, there are commercial and free tools available that can reset the Administrator password on the installation of Windows NT, Windows 2000 or Windows XP - gaining access to a Win9x system is even easier. (The existence of these tools is a good thing; administrators need to be able to access systems where the passwords are forgotten or changed for malicious purposes.)
But even thats not necessary; if you can boot off the floppy or CD, you can install a second copy of Windows on the hard disk and run that to analyze data on it.
This point is very important when considering whether attacks represent vulnerabilities in the computers operating system: If I boot the system off the floppy or CD-ROM, the operating system on the hard disk is not running. Its just a bunch of files.
Your only potential protection when physical security is breached is to use an encrypted file system, such as Windows 2000 Pro and Windows XP Pros EFS. (See this article on the SecurityFocus Web site for a good explanation of encrypting file systems.) No operating system (to my knowledge) employs such a file system by default.
The most recent such case of significance was an allegation by a famous writer that one could break into a Windows XP system by booting off a Windows 2000 CD and running the Recovery Console. The Recovery Console is a special console mode OS used to repair Windows 2000 and Windows XP. You run it by installing it to the hard disk and booting into it, or booting it directly off the Windows installation CD. See this Microsoft Knowledge Base article for a description of the Recovery Console, and this one for a description of the Windows XP Recovery Console.
|
|
�������x}r㶲s\@♵M=ҔlcX�I*�%B�cdH�%g~u~|�.{<5K�ht7�F;�?{{~$riOH1�%3�t;D�{{}.Ї}o�S�o92t1`:x =3~4�dȢ�q!_C�p`eF�WK�j�F=2}h�G'���:a;6]fu~�ƷP�N6O)L|@�AG�c"S9ˡ,Fp氢,sti #M-jZUQ
b�kG{Q>oچs[=bR3{;n~wUMSZw>ʑ�GA
n�n�p[J�^VOY\v?..
�N6���Nַ�߈+�QT�"*rp4K��I�hjCG'${@B�RM7JQߨPKX+hv��$(I-Lcv=ӧH0CВƌ^8RCb9nuo]_]{-o�_[gH>߈ekby
1�=�b Jg3Fz3G_/:nNo.9nڗݛ�9^֧Iٙ{Ά0@qgs�j__[z�<-�/mx�_f��l
M��G�iTj{iE�Ժx|>!9Io
'|?%:w.�!}O}�nr2GrI/�o"/�K�$jȱ�o>0@|Ӡd�q,�
߱n\S;G`ho__ VYKS�70���
t%ܼN�R�$9�Vϡ��ȟ"W�i�8�@r1�)6�K .&7R<�&�,|YB* b�$r�ݢQ3>LK$o�#���yF\�B(��PHQ��&�NUIRe6\}yp!zYYU'*daeEUis[fhE�ށؓYx:%e:^�K�/�364>p�X.B2iK1.pJ۫Z\UUJPX=*BE*GUL@�J�L-a[ e u�u~��>(�#ZG>O=�5>m;�>�D#ʠ�:괱b{\�f&�hC}ҍ:L ���w|�H[
sX� >$�n=@E�%��h��-DCw
PIe&3@yGA�Lνbrg�m͠~�(wMnP�>h^0�h�p.pp�YY?90�@]q�2>�o��9�#馥�M�T<�ģ|D R�N\Qo�DЧ�dQJ
d����4.'P(BHP!�9k���� ���99^�
�łP^KH�X-�Zp։p
(=�Hp&@-+aGe�5n_
$�df2I-ihn3!U~�G�,[E`z9r,T��.�i
O��6Jԭy�bQ9ҴZ
hҚ�͑ [���ܺ�M M� ȩ�* C
KX���A~n8��
t Xw,zaAXiŪ9g߃)5���j<#,TS
ݜ6l�hJ"+p5,6_�Lh�eoc�Yu-�yA\'�ݒn866ÞL�~B�'O虉m>(�.5e+:O̗�HږiMS�R�Bo+څP��!_.dI�_fMb�tȌ}>I!VF!3OH sf@nmhIJ:�#7��4�)��zz�%J�ݸ^`��3{q%%Ag��-�U檱�@4l*�Y+fM�EI��J�ەi]jk-�T8�W�7�Bʶb/Xa`ѩE]QZJKPD@BR)i�
iY�)^(yt�NJIע-M�
cc��,�zsŶ���/U�OLXZ�kX)Z%^Rg5>k,P!�/Ȁ2�(��l9نrij><:N��XS\O�T�Z|�mPTN�zP��;u���JiX�$
M3r�&\�$(e�8��,[b){��Wб�3abec;k�eS_Hq6Ϯ[-��V!҇� �LrCmP�Ǧ�"}ZlB�Ow]�1�W=X@C~,%1�IO5@&^`Gm��d�*9Ц-PcY}6bDm"(MEZ"�Ӟ��#�&$CgGᠢ�c�D8v_(+���G�?_v�szm>]F�>1�$#�P'ʰm�8Zzq&�$sD(�Mܧh&L3wS�M副3 ��h0ցq�_HE�y�[�p�z�x�}@*��&�DB\ANJ� �-�-UEN=��=�締q$zm�[&У�О�rVyC濚?O�~4T+BZ=
QQT*Ya�X7cSFOH.���x�/Oq��\}F�Ө7?�gڀPz;�̦;PC�3㑏.S˰)#.*# 4c`72$�$VG 2cM)-D#��w��Z�i�am0L{3�Mᗬ6{ w�
�"8&gS�}f�cD�H!S�#2�Z �Gk0hLw*n.1�U$�PS*lCĮP_�*3=@7�_ �5SUӓU=4*
OcI뛝�|5]|b9s#Op采Lk��P�SQ�l�7Xv@d̬�}#u2m8�7~���E�50�>�i_�Fb&*T~��\yy��XeϼVߦs�
|O=uZ
���o!*�"t+�>LWEn�ORD�71:P])(.Ń�πj̈ǖ�2uԚ�ZNL&��Vi
j�;�G8v/�K�̽vj�Z8p꩔r�g�P*H@:erȗG3~��2N*,E�$B�(NYc�H�hٌ*r_���{RUG T@DB#+��}t'nP�ZQ|Z%&�jZ|$>rcO� No�UbPQKJBЛ'a�C.���/Z�h�av�[fb;?lͥpZ=7g�X~�uB�5�y)
%erI8Mq�{/;CK�,%.O@^82z6]%Qhh^n@��fZfDS4
ni,: �5e�V/�U!neUT :*ijARO0Ӂ:t{@&~DiF{y�>QP(�����\}?؇^Ѫۣ�%�����l�
|*�n3$�@$K}??$�Su/YӾ|w|�X8�}_UA�Q�AZr{q 2
}Ej_uHJG�v-?~<ڝ��N�eB&{f�B�,
'8oHzq!3'^y�{{<=m_~y�60u�=8�.o�d�hXw;�Ny})}ҽ^xG}ْWΓ�!G�O"E!�rB�ݫ�='�uxq)q��m2�G42~q�h䎞{0l%z�i���R_�Ku͉��|9�kI*D|=d_5gHܰ�Gh�N٩�{k*Q�
Bb/�3�bA!I|JgGهAP#��{ ~�P)'$��Est%;-38^t}�Ih��!�酘:Ua2"(BRHHO�,v:^79Q�%l67>#F�E'K+tu{)�-'��2}i1�/W`�
eڃ�͟*Vrۨ'?�!��/�+���4|㿜y^G$M�FE�]R�qnu
zsHaP;PE3pq*h�w-��gRs$S)�Ҥ`�BgJȄa{e5)a5R!MLCY�OC/%$f;��Bڕz{ �g�iMN.m2ϼ3Kڝ�;Hë ̑m�WI+4$/EiA0'͋p!�,G��@lb'%hw&Brc7�`|x�r�'fx'xj��}qU�y^=4+jVuwfܣ�mFi:��{��GT@(NVu2k=��-,&��]W_���lzόEoQM2�х/Ȅ]KGS6^�å�0i8��=?P.V=w)k9,9P�n8#vڕg_Dr!N{H,Ɖ3M�!]rEuM q�W�{��$U��t{D�o�7ۨ{�.LeFx�?IАߙ�=p8!M[wzF]Y�fc
'oc Ǿv/ݻw�~Z:w[q*A=wC<,�,>G$c:�I"�I^U֭EdU)I=YEW㻑)C�^G�xL_:@Ɍ7CKҁ[W&-3��;GFn�C\`b_�#(@�k~=ϸ�2]a��
��O}Xj}D.]9n㚨�p;D�98E^Y8Z�䑼D�qD%��t`�5o��14L,*z>;l-S��Z�~D� Rb7��mMN���i���j&Όs�$��gr0� -$T0x�<|n�wkLdll���8�RbШL1o9٢p��r[���m�P\9�>n`��ܭ�Sh�uPM [+t;#I38'4_cL;�19L�v�iïnX�~e,TJjiH8LM=~1��/ӼolS
;�]˂�Dvq%1�w}x�ϰ0k0eFn ;]N|2>ZW,d�5��SAV3_|�
4(�6Xm1�a$H?ȂnB���#A>wB&d5=D��2Pq�9�)
)/
��+]1�(^�ł~�#ߪ%(�r�[3"���*:�/x(�U锚8p,VbLDNJ椪$�]q"�.+q�=dPnI�%nt`'�
^ߗ.=GoJ�CDM�,5
�� (!
B@�Cv
y���]k$U}yT� ��üx;s?4ݳЙ�ՠP,��/\���a��k�|$.B48nsuc���+eef
f^q#t��~~~~}oUjO
kAw}�ե2̹Z^ZD)>OpsC�Y�~BzY*�Ut�c@�ӷ�El<
�R6DNM_A V0L|asT�9��s|8!�L�fdJ>c@ �<߷l�5&T�'"*[ڳ>?$t�bՙu�+sϘ�t�̘K7g�VPZmh$
P$cD�"Y�I!~�ƣnI`�"0�}CHm�R-�8ai^Bkzْ
/�RcO��|zapI=���jK:-=ѡe��)=� Ӡ�%rDVe#�j�+I[ Eq�ڴ1R�ח{�4�5N�O9�5@Fo�k,^ګ
S�"��g��SjM%|=
�GUے*/MF�\2�(&%z' C0E7K7#7#7#7#+7jR~FH�<6�
|ח:<�Ft35�3`iYx``CU JDU~�(yC(_Yb@��]"_4�?��s<�iE�8mYN:zaZX��(�[�ږ+P>\g
�Hy7O�V�54Qk<[1�^�Y_zuV��ԫ+�I\2DfPC
G5FFf�5/{/tP�]^Ў*g�!�@B���"'v�{4mض[2�$u�Xlҭ9F-:EKcE�cW��&J:BznH.;kmorҔΡL�oa`�cQV*��q$XI$h`#bxl4�a-YW�{ۿ�2FI&�X�TJ_�#w}! 5@+lы?sCF��̀\-Oy5!p���.!�_�=y2�g��0Я>��{�mXoQqư;K3"�A۶{{�Ʒi�(`�W۲8ư>�ϊ;0]�G̹+�fhSY_ˮYSg������ d&pj6�+Nl�D(�&w#�aqX36���m$�X��~�#�]݃^:�=_} �|�MsL�Y
n ǂW=K��}C8˼�hmMZ.N�ܓ�at�Oeb�6Y3;g�(�+d�#2�A�l�e"|6?Gxa0|oQn;*0�8{7�I?ځrU����|#Qo|Պ�[N+iҡo����k'��ΐk?qñŃ�MW�u���˟�*�O2OXQm
߅LQ�Ӭfo!_`n3�»(yk1D.�G)�*�9s�/mt*,I|L ZD�Q q��7${o@=Il ��Ǟ�)=p=��kee�vךS|l:�§h*ju:�6�I#,e~Mx�t�{@RCְjb`!�vfM4�#Ldo �<�v_^?��ˢ�{C>D�N�Q+�qPV�9$ܕĤ�AI�҂�B4쭡�ĨWUs\:$VG ]J1x~��[[c'd���ek[`�ɣ.�j»*z �JD#�Y�U�ZJ>A1�R`s05Ԉ��b�vӚ ��lzZC왨B;7�lV�]^q�=o7/ݝ�AVnVt&b�CKoY#Kn@GS��uQa�Na)c,RiWw"�iE�Y�c���[+`mj|eX�k>I��ܺzB��90I�f[jR#rzw1��:}yjUS*ZZQ c:_LjUr�|cN>ACOK&xڣG�F^Gn?0RI+�[g-Hp\t�T`9���X,��G�
J��6_KO~G<&1�stc
�A�l;�sXx[Mw5=] zit3!�8X(=4rnzޝKj_�$|ͱ�7fs[Oҙ��H
Wkn3R)59?/R\mxE3B;sX�GX^sjF.F{2p�ʹG[RJYIvi~XIa�1q2�.ȹn붩����aWрHz.�zg2?b)o&,=�+s�Y�l��F
:�ǃ+]P]�a7,bF .�o3AwcsDSW;*݄B"��T�TbЭ�B1KM;I�P}3Y?d=`��'2t/x߹G!�=J�~C�hMlq�|W:�h|'O[RG7-�͢�}�i5aT0�|L?n�md�+�VzK";{d��h�:�M��x\Hu
_`�< w�{�̤7f?< ^M��9�oǝI��RG�$y{'-cW�d"$@�����_�Ѻi~Fzh/ew[=�d!/9k�k#Cۑ7��b�cG"00�Ă�(d�|D
]TVZAf9�n0Osۮx �C^
/醾!�s�S�;9Ĕ#@?PԔ�1"ۗ�'0�斩US1,�#0)�k�MQ(pxi|��wV4��,���@אI�`lg#\3#xH
1���t^´G֜ iuD@&`A=��m_16Faŷ^�(l8*~vxc�||�>gwt?`�D:Eb)��]ΰ"�@�[� '
o�����!\�z%%n4Wp=9��W[xsF��^yP0л;�Lo?gQPOnΆ�@ 33X�g;.�l9t:W�@Lg�>�t�s9�r3��RS¤vx)X-><' .yHcI�� ^iN4X+l
�h?ݩ9eď/0��2�K1c�~EWoVR�U�S�J�we
&zukwy
|�fY3{�8PRO�r%-r�uVнA='i92fw4tܽ�@%ˤ�A%͈ŵ?�c"4.>5iV>�NWv�.7x Zӷptԝs=|ҽ|־l]]/ƙ0Kym21^�
Γ^�9lvZLOSʙŢKs!Yx�9�K��xU�"
/gEL�yx&0Ɛn/�~�D0/�& F^�MÀacT yzzllťv�g%^�Nˢ�%'!uԢ@oAK�e~*�5=V0�8���S^u'V�ԼV(ۼ�r��ȿ'Mߙ߅nF>Rzs)ക�'�?g����!vqޜ>5ڧ�пvF>Ӿȇ3s/�?oο���akt2�d�;Y��v�?�t`w>;��d'e/?As?�##�|ˌ�KˌB�fȟ.ȗn|�ʠ+Q�:~z0^{0^@��9#��a|2 )�7�{A7MF7@7�\$)c�f�5pvJEs_53T�yU��[˳�gȳ���;F7^˰sk3ce_/ˀq\J�}u=M+ƥw�*WY[xM}-kkF1n6�d�b���5Ru(X2M*!+(���V>&c����ˬ$=)>7�懤J��x]B&;JػRWe[M'i��k(s3g�ao{�d�3-�":F+F*oAD6KA1w��ݣ,N5'H_5�Јw�3+�=y��}��n����}F����_q�Lz�~niM�ڧ^[�vt��3kSյq@5Axa_
9q?'OxWf�|4;(^�[sԙqE-֢@�)+z�yXk�Mg4?
J��ƍ:;X�\w{,!ꠂ/��Kz}EPW,M�DB�pFc��Z!��gKqN��]SKt�=dWxzK��~o:�`d;R'9w>EM+�+J9wwrH7/�"B�ȣ�*R%}a`R+�+���QP�B�48ۈW)17tCs�W�'M B�/|; [Lo�t�_=F:}�.Le-zyמ;'%8��,Tp`ٴ�`ؑ��˿-WLn1"PS.*
ur$~{5K5�6zw�~d��KF��:,�=�#_CP�t K�;-hE>q
p"��`%Ոީ`wƨ②&�[c�^b
4'F\��jT�n3 &�`T8�0&m
�`4M4�5~�ɱdL(1�k�DF(t#byKr�\�7Br�OO���sؖ=fG˳mb*nԙe^[\
��Hn< t�OMƘ%u17ީ�`�N"B�0@O�R:3�cG0MDkfAl!�&´_&]��cW
�6K�=g{LIR9z���Mb7Be�I��) D%�qn��{ywE/Gq�lX+.Ġ/�>'G4wB�-x�XugĽm�b z"ѱ4!��?�8�3�FVX"��uWdԢԱQ#䴯Hϱ=8�ʟ,2a`a?=N@>AыpO`w�B�[�AR�~�hqzF߭Uh#ɕ MXB|X
�Y�8[�^R"?SzG-p�z LJ @b
%rvM�>�ҽTj�}`�� ;�BI<`�-<�>lB*�9"P�ӷezLT z̲$៴�Xa+Nv֒Ǎֶ� >=ضGhE*6\r|#4nP/���7"a³mPm�q�BOh�
��wK�w�
,��AQ6�I�cS
> � ˠv3푀*عi�VhH�m;)���h2֭0�O���&�
X|�w^;�qVG��3>ƛ�rx{Gk3�#(+u`'�~"�v[_��K,!�Mt8/o9��kn>7Q$�T{�|�i�ZQ�ZteRb0��yNvţFc�?�d:��x�b[p?>PEg*R8WD
K�)Yb���d㚙/-r�Φ(@PX��9���,Be�x��Ϸ;���<�>�eӵx�2
��W�cV|BR}P/(W:�NOe�s{Z�%� _��H�v��*zz|
X^b�
0,:0�9����xx�� �utky!��1v��7 (ɟ~Tqޮ�7(GѦi#�Q`W:*�7�n�M�ywT�7o(+]y�c�Q1L�?Hl}}X�,ٰ���s�W�rJzn��gͳFK+,O�{(F�8p?\}ҽ^`gh[{Goy6��_1��*M4V* w�N|VtƢI26pzRSV�>{jX~r[)�CUk̹D/5V_JB\jh5
|
