Comments on: How to handle the built-in administrator account http://4sysops.com/archives/how-to-handle-the-built-in-administrator-account/ For Windows Administrators Sat, 21 Nov 2009 11:14:56 -0500 http://wordpress.org/?v=abc hourly 1 By: David http://4sysops.com/archives/how-to-handle-the-built-in-administrator-account/comment-page-1/#comment-128042 David Thu, 04 Jun 2009 00:53:50 +0000 http://4sysops.com/?p=2899#comment-128042 >> However, if an attacker manages to enable the admin account (for example, if he has physical access to the machine), he can just set a password which will enable him to manage the machine remotely. If the attacker has physical access to the machine, it doesn't matter if the password is blank or not. >> However, if an attacker manages to enable the admin account (for example, if he has physical access to the machine), he can just set a password which will enable him to manage the machine remotely.

If the attacker has physical access to the machine, it doesn’t matter if the password is blank or not.

]]> By: Michael Pietroforte http://4sysops.com/archives/how-to-handle-the-built-in-administrator-account/comment-page-1/#comment-128006 Michael Pietroforte Tue, 02 Jun 2009 09:26:14 +0000 http://4sysops.com/?p=2899#comment-128006 Mathew, thanks. Auditing activities related to the administrator account certainly is a good idea. The problem is that there are so many things to audit. Intrusion detection is a difficult business. Simplify PC Solutions, as far as I know the only noteworthy difference is related to UAC. Since XP has no UAC, the built-in administrator behaves like any other admin account. Mathew, thanks. Auditing activities related to the administrator account certainly is a good idea. The problem is that there are so many things to audit. Intrusion detection is a difficult business.

Simplify PC Solutions, as far as I know the only noteworthy difference is related to UAC. Since XP has no UAC, the built-in administrator behaves like any other admin account.

]]> By: Simplify PC Solutions http://4sysops.com/archives/how-to-handle-the-built-in-administrator-account/comment-page-1/#comment-127996 Simplify PC Solutions Mon, 01 Jun 2009 22:07:47 +0000 http://4sysops.com/?p=2899#comment-127996 Great stuff! One question: How do Vista/Windows 7's admin account capabilities compare with XP's? Great stuff! One question: How do Vista/Windows 7’s admin account capabilities compare with XP’s?

]]> By: Mathew Locke http://4sysops.com/archives/how-to-handle-the-built-in-administrator-account/comment-page-1/#comment-127994 Mathew Locke Mon, 01 Jun 2009 20:52:49 +0000 http://4sysops.com/?p=2899#comment-127994 Very good article. If more admins were to follow this practice, I'd have less work to do on the security side. One thing you might include is to alert or at least audit when someone tries to use the disabled administrator account. Tell tail sign of a bad guy. Very good article. If more admins were to follow this practice, I’d have less work to do on the security side. One thing you might include is to alert or at least audit when someone tries to use the disabled administrator account. Tell tail sign of a bad guy.

]]>