Re: I forgot my password for Office One Note.
  Home FAQ Contact Sign in
microsoft.public.onenote only
 
Advanced search
POPULAR GROUPS

more...
 Up
Re: I forgot my password for Office One Note.         

Group: microsoft.public.onenote · Group Profile
Author: YouBetcha
Date: Jul 1, 2008 15:35

Mike,

Read the following from their web page:

"MS OneNote uses relatively strong encryption algorithm that makes instant
password calculation impossible. Brute-force attack is the slowest approach
and can test all the passwords of up to 6 characters. Xieveâ„¢ attack is much
faster and is capable of recovering passwords of up to 9 characters.
Dictionary attack is the fastest method - there is no limitation on password
length. "

Their software relies on you using an "easy" password and it tries various
combinations of words. When they say "instant password calculation [is]
impossible" what they do not tell you is, how long it would take the software
to actually crack it, if it is not something from their dictionary.

You should send them an e-mail, give them a reasonably strong password
(something with combinations of letters and numbers, say a string of 10-12
characters and numbers, that can't be looked up in a dictionary) and ask them
how long it might take. I'm not sure from the description above it would be
able to do it at all. But make sure you tell them it is OneNote 2007 (not
Word 97). Let us know their response.

"Mike" wrote:
> It doesn't take a skilled and determined attacker to search Google and
> download a password recovery tool.
>
> http://www.lostpassword.com/onenote.htm
>
> It looks like the password protection is useless except for superficial
> protection. Someone please tell me I'm wrong!
>
>
> "Ben M. Schorr - MVP (OneNote)" wrote:
>
>> It's not intended to be Department of Defense certified security. If
>> you need that level of protection then you should be implementing
>> operating system level measures like drive encryption and strong
>> passwords.
>>
>> Like a deadbolt on a glass door -- it's not intended to stop a
>> determined and skilled attacker. It's intended to deter the casual
>> browser/thief.
>>
>> --
>> -Ben-
>> Ben M. Schorr, MVP
>> Roland Schorr & Tower
>> http://www.rolandschorr.com
>> http://www.officeforlawyers.com
>> Author - The Lawyer's Guide to Microsoft Outlook 2007:
>> http://tinyurl.com/5m3f5q
>>
>>
>>
>> "Mike" discussions.microsoft.com> wrote in message
>> news:AC6EC348-6E9F-41F2-BB51-1BFFDCDC7DF2@microsoft.com:
>>
>>> Just to satisfy my curiousity I did a Google search for "crack onenote
>>> password" and found a list of tools to crack the OneNote password. So I'm
>>> confused. If these tools work and it is this easy to compromise OneNote and
>>> gain access to a password protected section then what is the benefit of
>>> having a password protected section?
>>>
>>>
>>> "Ben M. Schorr - MVP (OneNote)" wrote:
>>>
>>>
>>>> Not natively, but Google is your friend...
>>>>
>>>> --
>>>> -Ben-
>>>> Ben M. Schorr, MVP
>>>> Roland Schorr & Tower
>>>> http://www.rolandschorr.com
>>>> http://www.officeforlawyers.com
>>>> Author - The Lawyer's Guide to Microsoft Outlook 2007:
>>>> http://tinyurl.com/5m3f5q
>>>>
>>>>
>>>>
>>>> "Paul" discussions.microsoft.com> wrote in message
>>>> news:D71C6E39-AC16-44EE-A2A8-28BE47B58C3B@microsoft.com:
>>>>
>>>
>>>>> I forgot my password for Office One Note.
>>>>>
>>>>> Is there a way to reset it without the old one?
>>>>
>>>
>>>>
>>
>>
no comments
diggit! del.icio.us! reddit!

RELATED THREADS
SubjectArticles qty Group
revert to office xp from office 2003 free trialmicrosoft.public.powerpoint ·