Registry Bypass?
Page 1 of 3 123 LastLast
Results 1 to 10 of 22

Thread: Registry Bypass?

  1. #1
    Senior Member
    Join Date
    Sep 2003
    Posts
    279

    Registry Bypass?

    Okay.... Say i was a computer admin at a school and access to the registry had been disabled for security reasons.

    Wouldn't The following code, if executed in a batch file re-enable access to regedit?
    =================================================

    REGEDIT4
    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]"DisableRegistryTools"=dword:00000000

    =================================================
    If so how would i go about stoping users from executing such a command and gaining access to the registry?
    AntiOnline Quick Forum Version 2b Click Here
    10010101000000110010001100111

  2. #2
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,192
    Spools..................really!!!!


    Try renaming regedit.exe to "your public execution will happen at dawn.exe"





    Cheers

    EDIT: sorry just hide the executable? and disallow floppy/cd drives............there are other ways, but I will have to think..........what OSes are you thinking of here?
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  3. #3
    Senior Member Maestr0's Avatar
    Join Date
    May 2003
    Posts
    604
    Simply do not allow non-administrator accounts execute access on that file.

    -Maestr0
    \"If computers are to become smart enough to design their own successors, initiating a process that will lead to God-like omniscience after a number of ever swifter passages from one generation of computers to the next, someone is going to have to write the software that gets the process going, and humans have given absolutely no evidence of being able to write such software.\" -Jaron Lanier

  4. #4
    Senior Member
    Join Date
    Aug 2003
    Posts
    1,019
    Rename regedit to something else?

  5. #5
    Junior Member
    Join Date
    Aug 2001
    Posts
    9
    I tested it on my system and if came back as "The system cannot find the path specified." and yes I spelled it all correctly. (copy - paste)

    Oh yeah.. Soulfly RUCKS!!!!
    Everyone has to start somewhere and we all start at the bottom - FeN-i-X

  6. #6
    Senior Member
    Join Date
    Sep 2003
    Posts
    279
    couldn't you still do it through command prompt?

    XP and/or 98
    AntiOnline Quick Forum Version 2b Click Here
    10010101000000110010001100111

  7. #7
    Right turn Clyde Nokia's Avatar
    Join Date
    Aug 2003
    Location
    Button Moon
    Posts
    1,696
    No, the code wouldnt work no matter what O/s you run or how many times you try it!

    And since it does not work you need not worry about stopping other people trying it.
    Drugs have taught an entire generation of kids the metric system.

    http://tazforum.**********.com/

  8. #8
    Super Moderator: GMT Zone nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,192
    Maestr0's answer sound fine for NT4/WIN2K/XP as they have comparatively good security. 9x and Me are home user OSes so are more difficult. You can remove the "run" option from the start menu,which makes it more difficult, but it would be relatively easy to reinstate it unless you disable the floppy/CD drives.

    Perhaps I should ask the question what do you want to allow the users to do?

    I haven't looked at your batch file code but I would have thought that a correctly defined .reg file if double clicked would do what you say in 9x/Me? because these OSes don't acknowledge an "administrator" as such? So if you can't do it............no one can?

    Cheers

    EDIT : I have just looked at a 98se machine, and the path isn't there..............gets as far as "policies" then just offers "explorer" or "network"

    Me gets as far as "policies", but there is nothing in it.

    I think you have left out some information? like how would you set up the control in the first place, and still allow authorised access to the Registry. I am talking 98 and Me?

    I still believe that you would need physical security with the home systems, and possibly some third party security application. Anyway they are obsolete OSes, so is it worth it?
    If you cannot do someone any good: don't do them any harm....
    As long as you did this to one of these, the least of my little ones............you did it unto Me.
    What profiteth a man if he gains the entire World at the expense of his immortal soul?

  9. #9
    Senior Member
    Join Date
    Sep 2003
    Posts
    279
    NOKIA:
    No, the code wouldnt work no matter what O/s you run or how many times you try it!

    And since it does not work you need not worry about stopping other people trying it.
    Considering that you did not try the code every operating system you have no right to say that it will not work on any of them. I ran the script on my computer and it worked. I wouldn't recomend giving out advice like that again unless your absolutely sure its true.
    AntiOnline Quick Forum Version 2b Click Here
    10010101000000110010001100111

  10. #10
    Right turn Clyde Nokia's Avatar
    Join Date
    Aug 2003
    Location
    Button Moon
    Posts
    1,696
    I ran it on 98, me and xp and i didnt work dood, sorry.
    Drugs have taught an entire generation of kids the metric system.

    http://tazforum.**********.com/

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

 Security News

     Patches

       Security Trends

         How-To

           Buying Guides