Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
@Alice + disabling sticky keys disables very easy way to exploit in into your machine...
-
dmoa4196yoop, turned off the recommendation.
My new rant is that it should recommend you by default xD -
haze2706yWhen I stop writing to think, I sometimes nervously move my hand/fingers. That popup helped me realise that. Never disabled it, helps me get back to Earth once I start pushing the shift like 20 times.
Now I work mainly on Linux + keep social stuff on my phone. Therefore I have no idea when I black out like that to think. -
C0D4669026y@dmoa given it's on github, couldn't you just fork and remap the shift key to something less obtrusive?
🤔come to think of it, how does adobe manage to not trigger sticky keys when you have to hold that damn thing down all the time to position an element?
https://github.com/aseprite/... -
@M1sf3t
It makes it extremly easy to exploit. Idk if they patched it in windows 10, but i multiple times abused it when I didnt have any other computer nor pendrive on me.
So its very simple, you boot into recovery (fail boot 2 or 3 times by forcing computer off during boot), you go through recovery until you see EULA or sth like that. It openes in notepad.exe on system rights. From file menu, select open, go to your system32 folder, rename sethc.exe to sethc.bak, copy cmd.exe to sethc.exe.
Reboot, shift 5 times, and boom, you have system rights terminal before logging in.
Now, just drop in something like:
net user <username> *
And input new password.
Password recovered.
Of course, if you have physical access to machine, you can do anything, but thats by far the cleanest and easiest exploit.
You can fight it by disabling stuff like sethc, and modify lockscreen to disallow these features. Its possible and quite easy.
Tl;dr
So it's exploitable if have physical access to machine -
olback107946y@DubbaThony This is exactly how I made myself admin on my School pc. First on windows 7 which was easy. Windows 10 was more annoying. Had to get the disk out since they changed the recovery procedure. But it still works.
-
@ishank-dev
Bc i prefer windows 7
Bc im used to it. I dont mind using linux but i have ton of soft that im used to. -
@M1sf3t
Everyome uses whatever he/she prefers.
I started my expirience with computers on windows, in windows 7 i can tweak most of things how they say... "drunk with eyes closed".
I find mac OS extreme pain to use. Yes I tried. In linux, well, i used linux for some time as daily driver. Lack of programs I used for daily life was really getting on me, but its nothing compared to reinstaling it +-3 times a week becouse I just wanted to play game and needed wine with proton, or gpu driver etc.
I still dont know how in the world it was getring so easly bricked.
I prefer OS "setup once and forget", not "maintain and maintain" ;)
Maybe its just me not beeing linux compatible. But for servers, debians are awesome, and i bricked one only once in life when I was learning to use servers so dosent rly count..
NO, FOR THE 10TH FUCKING TIME I DON'T WANT TO TURN ON STICKY KEYS
rant