Solved

WindowsME login screen not working properly

Posted on 2006-07-07
8
306 Views
Last Modified: 2010-04-11
Heres my problem (well my wife's problem)

Hardware: At her workplace, she uses a WindowsME PC

The problem: People are accessing innapropiate content on the web overnight on her PC. This PC is to be accessed by one user and one user only (my wife). She's tried setting up login for herself using the control panel and double-clicking the users icon, but people can simply "x" out of the authentication box at the login screen and gain full access to the desktop. How can this be stopped?

In simple terms: Even though she has set up a login account for her and only her, people can STILL getting access to her PC.

Thanks in advance :p
0
Comment
Question by:whitexican
  • 3
  • 2
8 Comments
 
LVL 26

Accepted Solution

by:
Gary Cutri earned 125 total points
ID: 17058819
I would highly recommend that she gets her system upgraded to Windows XP but if thats not possible you can do the following:


To prevent Windows 98/ME users from bypassing the logon screen, log on to your workstation. Ironically enough, if you want to, you can bypass the logon screen by pressing [Esc].

Start the registry editor by selecting Run from the Start menu, typing regedit in the Open text box, and clicking OK. When the Registry Editor window opens, navigate through the left pane until you get to the HKEY_LOCAL_MACHINE\Network\Logon. In the right pane, look for the value named MustBeValidated.

If the value exists, it's probably set to 0. To change the value, double-click it. You'll then see the Edit DWORD Value screen. Enter a value of 1 in the Value Data field and click OK.

If the value doesn't exist, you'll need to add it. Select New | DWORD Value from the Edit menu. The new value will appear in the right pane, prompting you for a value name. Type MustBeValidated and press [Enter]. Double-click the new value. You'll then see the Edit DWORD Value screen. Enter a value of 1 in the Value Data field and click OK.
0
 
LVL 26

Expert Comment

by:Gary Cutri
ID: 17058923
*******************Before you begin*******************

Before you disable the bypass logon, you should ensure that your workstation already has some type of network authentication available to it. Windows 98/ME will maintain a local database of users, but the best way to authenticate users is against your server.
0
 
LVL 26

Expert Comment

by:Gary Cutri
ID: 17058956
Also there are programs you can purchase that will also allow you to lock your system such as THE LOCK:

http://www.crashcoursesoftware.com/download/thelockxp.html

0
Watch Anatomy of a Wi-Fi Hack On-Demand

In less than a weekend, anyone with Internet access and some free time can become a Wi-Fi MitM to wreak havoc on your network. View our Wi-Fi Expert in an on-demand episode of our Secure Wi-Fi mini-series as he explores the motives, execution, and anatomy of a Wi-Fi hack.

 

Author Comment

by:whitexican
ID: 17058967
Ok got your info before I read the second post.
shes managed to get the login window properly and it cannot be bypassed however it is now asking for a domain and well... I have no idea what it is lol

so what is the default domain for WindowsME?
0
 

Author Comment

by:whitexican
ID: 17059767
Went into safe mode and took out the MustBeVaidated value (set it to 0)

The problem she was having was that network authentication screen or login screen asked for username, password and a domain but she dos not have a domain set up, it seems that not even a workgroup is set up. (this is a pc that is not exactly top of the line and the people that own it have basically no control over it)

I guess the next thing would be to find the domain which the pc is in before making the registy change :(

anyone got more info?
0
 
LVL 4

Assisted Solution

by:WerewolfTA
WerewolfTA earned 125 total points
ID: 17061573
Hi whitexican,

You said this is happening at night.  What if your wife were to set a BIOS password for startup and then shut her computer down before leaving work?

Good Luck!
0

Featured Post

Register Today - IoT Current and Future Threats

Are you prepared to protect your organization from current and future IoT Threats?  Join our Wi-Fi expert in episode three of our webinar series for a look at the current state of Wi-Fi IoT and what may lie ahead. Register for our live webinar on April 20th at 9 am PDT!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

February 24, 2017 — On February 23, Travis Ormandy, a vulnerability researcher at Google, reported on Twitter (https://twitter.com/taviso/status/834900838837411840) that massive stores of data have been leaked by CloudFlare, a company that provide…
Many businesses neglect disaster recovery and treat it as an after-thought. I can tell you first hand that data will be lost, hard drives die, servers will be hacked, and careless (or malicious) employees can ruin your data.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

679 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question