Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: The Million Dollar Solution

From: dim () XS4ALL NL (Dimitry Andric)
Date: Sat, 6 May 2000 17:05:21 +0200

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 2000-05-06 at 13:40 Alexander Sanda wrote:


Is there any way to fool or disable the system file protection under
Win2K?


If you want to get rid of, say, wscript.exe, just delete
%systemroot%\system32\dllcache\wscript.exe first, and then
%systemroot%\system32\dllcache\wscript.exe. If you then simply refuse
to insert the Win2k CD when SFP asks for it, that file will be marked
as "not restored" somewhere within the bowels of the registry, and
SFP will (hopefully) continue to shut up about it. This will also be
visible in the Event Log.

I've used this already to get rid of crap like Pinball, NetMeeting,
Front Page extensions, and other "system files needed to ensure
system stability". ;-)

Cheers,
- --
Dimitry Andric <dim () xs4all nl>
PGP key: http://www.xs4all.nl/~dim/dim.asc
KeyID: 4096/1024-0x2E2096A3
Fingerprint: 7AB4 62D2 CE35 FC6D 4239 4FCD B05E A30A 2E20 96A3

-----BEGIN PGP SIGNATURE-----
Version: Encrypted with PGP Plugin for Calypso
Comment: http://www.gn.apc.org/duncan/stoa_cover.htm

iQA/AwUBORQmnrBeowouIJajEQLZmgCdH+N07itE6VA0Nc1ZNAg2oNsop4kAni+c
piJ03ck3HFEZjgIhZgw++meA
=jOqF
-----END PGP SIGNATURE-----
Previous By Date Next
Previous By Thread Next

Current thread: