Hi
As most people know, Windows 95/98 has basically no security. It alows people to login in as nobody, change a users password, logout and login as the user whos password is changed, all with no knolege of the users pw. I was wondering if MS fixed this bug. I dont have Win2000 so I cant check myself. Basically, all you do is find what PWL file holds the pw for each user from system.ini, then either modify that file by opening it, deleteing the current content, and replacing in with plain text. the pwl (password list) is encrypted but does not need to be encrypted to funtion. so, if anyone with win200 can try it and tell me if it works, thanks.
the instructions one more time:
1) login by clicking cancle
2) open up 'find' and look for system.ini in 'My Computer'
3) open system.ini in notpad, presss F3 and do a search for PWL.
4) it will bring you to some usernames and pwl files for each one
5) find the user you want and do a search for that pwl file
6) delete whatever junk is in there and replace it with like the word 'the' or something
7) save it
8) log off or restart the computer
9) login using the new pw
10) if you get an error after logging in with the new pw, just click the 'fix it later' option.

it only takes a few minutes to do. if you could, email me with the answer email me. or, just give me a reply post.
thanks a ton!

David

In short, no that doesnt work.
Passwords are no longer stored there.

exceion