Clark

While I was there I wanted to bang my head against the wall because of it.

Freshman and sophomore year if you went into explorer you could access other peoples files. They partially fixed it my junior year but now you are able to access 1 file before you get locked out.

Wireless networks, they have a million of them! None of their wireless networks have security and even if the school were to implement it, about half of the networks were setup by teachers plugging in their own routers. Junior year one of my friends at the time brought his laptop and sat in the middle of the amphitheater watching porn. (you can also use the wall jacks but thats more easily detected)

Bios locks, there aren't any! Almost every computer there can be started via boot disk, all files are accessible. I started up a copy of OPHCrack one time and got the ETIS password as well as all of the other people who used that computer.

You cant install new programs, but that doesn't mean you cant run unapproved programs. Limewire, Project64, and AIM work fine, never tried a VPN to get around the browsing restrictions but it may work as well.

They don't scan files or look at them even, I still have my copy of Project64 and all my roms on the network. (09 user accounts are still active) The most updated virus scanner had never even been used last time I checked.

I tried logging into the ETIS server via terminal, I was surprised to find out that the username and password was not what I thought but I can probably get in if I try hard enough.


I was going to do this as my senior project but they pretty much told me to get lost, their loss, now you know.

i doubt they fixed it by now. admins don't do shit (.... cept me ofcourse )

Allen you are just as lazy as they are, but yea, they probably haven't fixed any of this.

Things I wanted to try:
Copy cmd to flash drive and run that
VPN as mentioned before
LAN boot all the computers for the lulz
Attach my own router somewhere discrete allowing me permanent access
Install some of my own programs, like the one to chat over a LAN.

if i'm just as lazy as they are then why are they even getting paid? lol they should be fired for not doing anything.

They actually get paid way more than they should, I know because I was going to apply. Non techie people cant tell that they aren't doing anything, that's why they don't get fired.

The problems don't stop with windows

On the mac laptops (probably the desktops too, I haven't looked) you can get root access by holding down apple(cmd) - s during boot

apple-s tells the computer to boot into single user mode and it can not be passworded ever. . .

The only way to prevent access to a mac (OS X) that way is by putting in the install dvd and enabling the open firmware password.

Even that process is all GUI and extremely simple.

Do they even know about the problem. . . probably not.
Will they fix it. . . probably not.

Thanks for contributing, in all my time at Clark I never used a Mac so I didn't know about that.

Unchained wrote:
Things I wanted to try:
Copy cmd to flash drive and run that

Tried this, it was still blocked.

Tried this, it was still blocked.

That's lame but I'm glad to know.

You can access cmd prompt through batch scripts. . .
It lets you run batch scripts

I haven't tried to start cmd prompt from a batch script yet though

Well judging by the fact that it doesn't work off a flash drive, I suspect that the files its dependent on are locked as well.

I forgot the name of it, but there was a service that can be run that disables the running of command prompt, where ever it is. I think it was access.msc or something to that effect.

I didn't know that... so basically a batch file could kill the service? (and maybe the viewing service while you're at it)

hey y not just do a batch file

and u
cool guy
wats the pass
to the cla mac cart?

in mrs. craemers room?

Well I cant but there's nothing to stop any of you besides threats of expulsion...

I only messed with a few computers so I don't know.


Thought: I wonder if Clark would pay me to do a security audit...

He he. . .

Just imagine what they'd be thinking by the time you were done.

Man that would be so sweet, getting paid to do what I enjoy and fuck with Mr. Dall at the same time.

If any administrator at the school ever asks how secure they are, tell them you know a guy they should call.

No, it's not a running service. You run it as an admin form the "run" menu, then choose what to lock. Once you run it and disable changing it, the utility can never be run again.

Ooooh yea that makes more sense to me.