I wish i'd quit finding these !! : Fainted brain
a.Ok now, what you need to do is to run compmgmt.msc
b. and click on local users and groups.
c. once you've gotten here you need to open up the 'users' folder. At this point I am walking along with you and notice that there are severalmajor security holes dealing specifically with the password:
1. double clicking on the any user name allows you a list that lookssomething like this:
"user name"
full name: -----------------------
__________________
description:-----------------------
__________________
--_ user must change password at next logon
--_ user cannot change password
--/ password never expires
--_ account is disabled
--_ account is locked out
"ok" "cancel" "apply"
ok if you can get past my cheesy drawing, I must ask, did you notice that the "password never expires" box is checked? if you did, then you may have realized that this means that you can also uncheck it!
2. if you're paying attention, you'll see that the 'user must change passwordat next logon' box is unchecked. if you put a check in this box of course,when you shut down the system will prompt for a new password!
3. going back to step
c.,right click on any account and notice the dialoge that appears:
set password...
all tasks delete rename properties help
I think you can handle it from here
ps: I wonder if you can access this data if this stuff is locked to the userby the admin by going in through the command prompt. I doubt it, but if anyone finds a way let me know.
Tuesday, July 29, 2008
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment