Hacking from other users... prevention?

Recently, my younger brother figured out how to use the command prompt to change my password, and access my account. Before he could do so, however, I physically took the computer away. I have highly sensitive and private files on my account, and I need to prevent him from being able to access them. I "hacked" his password, and disabled the guest account on my computer, in hopes that I can find a solution, and be sure that he doesn't access my files in the meantime.

Now, does anyone have a remedy for this? It is key that he stay out of these files, and that my password remain intact. I doubt that deleting the command prompt itself is advisable in the least...

I am running a windows XP, '02, SP3. I will gladly answer any questions that you need answered.

 

Don't you have a strong admin pass to start with? Secondly I'd delete the guest account and thirdly I'd smack him upside the head for being a jerk!:-D I know this doesn't help much, just my take on things.

 

Hi

You may want to investigate TrueCrypt (free), which can encrypt the entire system drive with a password that is needed before Windows even loads. Obviously, using a strong password is paramount too, as all the protection in the world is only as good as the key used to unlock it.

 

No, this isn't an "OMG he found my password" this is him going to the command prompt on his own account, and typing the following:

net user Owner *

Then, he types a new password. He doesn't need my password to do it, either.

 

I'm not "allowed" to. Because he'd tell my stepdad (who I am currently living with for the summer) and I'm not allowed to keep him off the computer... Are you sure there's no way that I can keep that user, or even all users from using the command prompt?

 

Encrypt your files then. Should be pretty secure against a kid. Just make sure that he hasn't installed a keylogger.

 

That seems like a great idea... is there a tutorial or something out there? Or is it a really simple process?

 

Try this, no tutorial needed, just don't forget your 'strong' password eh?:-D

Crypt4Free 5.4.7

 

A limited account does not keep him off the computer but it will keep him from changing your password.
http://windows.microsoft.com/en-US/...r-account-instead-of-an-administrator-account

You might consider an external hard drive also. If he doesn't have physical access to your files, it won't matter.

 

Thanks a bunch! My passwords are ALWAYS relatively strong, containing more than 15 characters, among which, are capital and lower case letters, and numbers. No worries there ^^

Either way... I have a question... as to the encryption options...

What should I have for "Algorithm"? Also, what is "Pack files, then crypt" for? And "Delete after Encryption"?

The second seems kinda common sense, though... it seems kinda pointless, if it just puts a password on the file to delete it afterward....

 

JustPLayin beat me to it.

Depending on the size of the sensitive data, anything from a $5 thumbdrive to a $100 external kept somewhere he cant get to it would be the ideal solution. Kids are sneaky little twits when they wanna be and can surprise you with their ingenuity .

 

already done, though, I am in danger of losing this data now... many of my flash drives have either changed hands, or remain......... misplaced at the current time. Thus, it would be better for me to try to encrypt them, in my own humble opinion.

 

Is there a particular reason you wouldn't want to use Truecrypt's system drive encryption? It would be the best bet in your case, and probably easiest. Their site has plenty of documentation on how to use the program, the best way to set things up, etc.

http://www.truecrypt.org/docs/system-encryption

 

Thanks for the help. I'm definately going to use truecrypt to secure things. Thanks!