I see lots of questions on how to disable password logins as "I am the only
user". That's fair enough (I am of the opinion that the process in unsafe
and inadvisable for many reasons), but I was wondering - is there an
implication here with hackers being able to wreak damage on the local
machine as password login is disabled?

--
(I may be wrong...I usually am....)
Google is your Friend
Email address deliberately false to avoid spam:
www.gbpcomputing.co.uk

There are chances. Two vulnerabilities I can think of:

1. The username and password are stored in registry (sometimes as
clear-text)
2. If you have a blank password, any1 can access ur pc from internet using
IP address using the credentials. Make sure that the automatically logged in
account is a limited user and keep the "Administrator" logon protected with
good password. Use the Admin/equivalent login only when needed.


___________________

Ramesh Srinivasan
Aim : SRamesh2k
Yim: RVKK
___________________


"rifleman" > wrote in message
...
I see lots of questions on how to disable password logins as "I am the only
user". That's fair enough (I am of the opinion that the process in unsafe
and inadvisable for many reasons), but I was wondering - is there an
implication here with hackers being able to wreak damage on the local
machine as password login is disabled?

--
(I may be wrong...I usually am....)
Google is your Friend
Email address deliberately false to avoid spam:
www.gbpcomputing.co.uk

In ,
Ramesh > contemplated the little bit of fluff
in his navel and typed:
> There are chances. Two vulnerabilities I can think of:
>
> 1. The username and password are stored in registry (sometimes as
> clear-text)
> 2. If you have a blank password, any1 can access ur pc from internet
> using IP address using the credentials. Make sure that the
> automatically logged in account is a limited user and keep the
> "Administrator" logon protected with good password. Use the
> Admin/equivalent login only when needed.
>
>
> ___________________
>
> Ramesh Srinivasan
> Aim : SRamesh2k
> Yim: RVKK
> ___________________
>
>
> "rifleman" > wrote in message
> ...
> I see lots of questions on how to disable password logins as "I am
> the only user". That's fair enough (I am of the opinion that the
> process in unsafe and inadvisable for many reasons), but I was
> wondering - is there an implication here with hackers being able to
> wreak damage on the local machine as password login is disabled?

That's what I thought!

--
(I may be wrong...I usually am....)
Google is your Friend
Email address deliberately false to avoid spam:
www.gbpcomputing.co.uk

Bitstring >, from the wonderful
person rifleman > said
>I see lots of questions on how to disable password logins as "I am the only
>user". That's fair enough (I am of the opinion that the process in unsafe
>and inadvisable for many reasons), but I was wondering - is there an
>implication here with hackers being able to wreak damage on the local
>machine as password login is disabled?

No .. better to have a password 'entered automatically' than to not
have one, IMO. Hackers should never get that near anyway .. that's what
firewalls are for. Wireless networks are a whole other ballgame, but
even there a password is a good thing.

--
GSV Three Minds in a Can
Outgoing Msgs are Turing Tested,and indistinguishable from human typing.