So I got a new laptop...
-
raddevus wrote:
Then I learned that the PIN is only stored on your local computer. If you have a Windows account and try to use that PIN when logging onto another computer then the PIN won't work there*.
Unless, of course, you've used the same PIN on all the machines. Which most people will be doing. ("Thank God, I don't have to remember 20-character passwords that need to be changed every 60 days! These four digits will be good forever!")
We won't sit down. We won't shut up. We won't go quietly away. YouTube, and My Mu[sic], Films and Windows Programs, etc. and FB
GenJerDan wrote:
"Thank God, I don't have to remember 20-character passwords that need to be changed every 60 days! These four digits will be good forever!")
well, yeah, there's that. And that does happen. It seems that the PIN basically unlocks a process that then submits the associated account's password to the sign on.
-
But to log you on to the domain your windows password hash still needs to be sent over the network to the server. The only thing they have managed is to lower the local security.
Wrong is evil and must be defeated. - Jeff Ello Never stop dreaming - Freddie Kruger
Jörgen Andersson wrote:
The only thing they have managed is to lower the local security.
Well, yeah, but again, it's about the fact that the person is then has physical control over the device. If they have that, then maybe you're toast anyways?? It's all how you look at it.
-
I never looked into it - thanks for point out the PIN is stored locally. So instead of having to remember a single long, complex password to log into multiple machines, you have to remember a different PIN for each device. And if you start using the same PIN on each device, then an attacker only has to crack a stupid 4-digit value. Doesn't seem like much of a win to me.
dandy72 wrote:
And if you start using the same PIN on each device, then an attacker only has to crack a stupid 4-digit value. Doesn't seem like much of a win to me.
But if you use it just for your laptop -- or vice versa (not your desktop also) then it might be helpful. I don't know. It's probably good for your grandma you can set her password to be extremely strong (64 characters) and then only require her to input a 4 digit PIN. Then whenever she gets entirely locked out, you reset her account password. :-D
-
Jörgen Andersson wrote:
The only thing they have managed is to lower the local security.
Well, yeah, but again, it's about the fact that the person is then has physical control over the device. If they have that, then maybe you're toast anyways?? It's all how you look at it.
The way I look at it is that they have managed to create the extreme opposite of Single Sign On. And as we know, the weakest link is the users.
Wrong is evil and must be defeated. - Jeff Ello Never stop dreaming - Freddie Kruger
-
WTF is this "Windows Hello" bullshit! And how do I disable it Also, how the fuck is a pin-code supposed to be safer than a password? Rant over.
Wrong is evil and must be defeated. - Jeff Ello Never stop dreaming - Freddie Kruger
Jorgen, calling it a PIN is a bit misleading, it can contain letters also, so it's really a password. I got a Windows 10 laptop for the first time only a couple of months back, and I'm using a "proper" password with letters, even though it's still labelled a PIN. [How to set an alphanumeric PIN on Windows 10](https://www.addictivetips.com/windows-tips/set-alphanumeric-pin-on-windows-10/)
Cheers, विक्रम "We have already been through this, I am not going to repeat myself." - fat_boy, in a global warming thread :doh:
-
WTF is this "Windows Hello" bullshit! And how do I disable it Also, how the fuck is a pin-code supposed to be safer than a password? Rant over.
Wrong is evil and must be defeated. - Jeff Ello Never stop dreaming - Freddie Kruger
Step 1) Boot up with a Linux install disk ...
Nothing succeeds like a budgie without teeth.
-
WTF is this "Windows Hello" bullshit! And how do I disable it Also, how the fuck is a pin-code supposed to be safer than a password? Rant over.
Wrong is evil and must be defeated. - Jeff Ello Never stop dreaming - Freddie Kruger
Jörgen Andersson wrote:
how the f*** is a pin-code supposed to be safer than a password?
This is indeed BS. Plus on my son's laptop, the ability to change it is disabled. Since he forgot it, I have to use my mycrosoft account password to allow him to pass any step where admin rights are required. :~ :sigh:
-
Step 1) Boot up with a Linux install disk ...
Nothing succeeds like a budgie without teeth.
-
Sooo... they can't send it to you or set a new one if you forget it?
-
raddevus wrote:
Then I learned that the PIN is only stored on your local computer. If you have a Windows account and try to use that PIN when logging onto another computer then the PIN won't work there*.
Unless, of course, you've used the same PIN on all the machines. Which most people will be doing. ("Thank God, I don't have to remember 20-character passwords that need to be changed every 60 days! These four digits will be good forever!")
We won't sit down. We won't shut up. We won't go quietly away. YouTube, and My Mu[sic], Films and Windows Programs, etc. and FB
-
But to log you on to the domain your windows password hash still needs to be sent over the network to the server. The only thing they have managed is to lower the local security.
Wrong is evil and must be defeated. - Jeff Ello Never stop dreaming - Freddie Kruger
Okay, I do UNDERSTAND using a PIN, and I thought the same thing at first. Then, I started working on a TABLET for a product I am creating. You know what REALLY sucks. Typing a complicated password with a virtual keyboard and a touch screen! You know how much easier it is to have a PIN. And here is an interesting side effect. Every device uses a different user login, but is programmed with the same pin. The users have to have the device in hand, and know the pin. But one pin unlocks all devices to use the software. If I remotely CHANGE the password, then the PIN SHOULD FAIL to log you in! (Because it saves the cached, hash, as I understand it). From a management standpoint of multiple, shared devices. I am sold. If you lose a device, I assume you change your password, and the PIN becomes useless across all of your devices. If that is the case, then it's actually not a bad compromise. Especially given that you need physical access to the device. But the Auto-Install Hello and Cortana, etc. Plus the COUNTLESS HOURS to run windows update... I am starting to miss MS-DOS 5.0 a LOT. LOL.
-
Okay, I do UNDERSTAND using a PIN, and I thought the same thing at first. Then, I started working on a TABLET for a product I am creating. You know what REALLY sucks. Typing a complicated password with a virtual keyboard and a touch screen! You know how much easier it is to have a PIN. And here is an interesting side effect. Every device uses a different user login, but is programmed with the same pin. The users have to have the device in hand, and know the pin. But one pin unlocks all devices to use the software. If I remotely CHANGE the password, then the PIN SHOULD FAIL to log you in! (Because it saves the cached, hash, as I understand it). From a management standpoint of multiple, shared devices. I am sold. If you lose a device, I assume you change your password, and the PIN becomes useless across all of your devices. If that is the case, then it's actually not a bad compromise. Especially given that you need physical access to the device. But the Auto-Install Hello and Cortana, etc. Plus the COUNTLESS HOURS to run windows update... I am starting to miss MS-DOS 5.0 a LOT. LOL.
So, give me a choice.
Wrong is evil and must be defeated. - Jeff Ello Never stop dreaming - Freddie Kruger
-
So, give me a choice.
Wrong is evil and must be defeated. - Jeff Ello Never stop dreaming - Freddie Kruger
The choice WAS there! You can turn off the pin feature. I did for a while... Or did that take that away? [It WAS on the screen where you reset the pin] I say this, after I just witnessed the 2004 upgrade CHANGING the virtual keyboard, making the keys smaller by adding a USELESS Margin, and removing 2 options of keyboard that we were USING. It ruined 3 teams for an entire day, re-acclimating to a new virtual keyboard. I could strangle someone at MSFT!
-
WTF is this "Windows Hello" bullshit! And how do I disable it Also, how the fuck is a pin-code supposed to be safer than a password? Rant over.
Wrong is evil and must be defeated. - Jeff Ello Never stop dreaming - Freddie Kruger
-
The trick is to setup Windows initially with a local account with no password, then set a password and/or link your Microsoft account to it via settings after.
Interesting
Wrong is evil and must be defeated. - Jeff Ello Never stop dreaming - Freddie Kruger
-
The trick is to setup Windows initially with a local account with no password, then set a password and/or link your Microsoft account to it via settings after.
And the easy trick to create a local account is not to connect to your network earlier in the setup process.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, weighing all things in the balance of reason? Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful? --Zachris Topelius Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies. -- Sarah Hoyt
-
WTF is this "Windows Hello" bullshit! And how do I disable it Also, how the fuck is a pin-code supposed to be safer than a password? Rant over.
Wrong is evil and must be defeated. - Jeff Ello Never stop dreaming - Freddie Kruger
The only place where Windows should run is in a VM; connected to the outside world over your own proxy. Unless it a toy, install a real OS.
Bastard Programmer from Hell :suss: "If you just follow the bacon Eddy, wherever it leads you, then you won't have to think about politics." -- Some Bell.