Welcome to Vista Banter. You are currently viewing our boards as a guest which gives you limited access to view most discussions, articles and access our other FREE features. By joining our free community you will have access to ask questions and reply to others posts, upload your own photos and access many other special features. Registration is fast, simple and absolutely free so please, join our community today! If you have any problems with the registration process or your account login, please contact contact support. |
|
Security and Windows Vista A forum for discussion on security issues with Windows Vista. (microsoft.public.windows.vista.security) |
|
LinkBack | Thread Tools | Display Modes |
|
|||
Built-in Administrator acct. for Domain be password never expires?
Are there any risks associated with an expired built-in Administrator
password? I've been googling but can't seem to quite get results that speak to this issue. |
|
|||
Built-in Administrator acct. for Domain be password never expires?
In article , - says...
Are there any risks associated with an expired built-in Administrator password? I've been googling but can't seem to quite get results that speak to this issue. The risk is that you cannot log in with the account once the password has expired without resetting it. If an attacker is able to determine the original password, due to poor password implementation, they could change the password from under you. Brian |
|
|||
Built-in Administrator acct. for Domain be password never expires?
So is it better practice to have it expire, or to never expire?
"Brian Komar [MVP]" wrote in message om... In article , - says... Are there any risks associated with an expired built-in Administrator password? I've been googling but can't seem to quite get results that speak to this issue. The risk is that you cannot log in with the account once the password has expired without resetting it. If an attacker is able to determine the original password, due to poor password implementation, they could change the password from under you. Brian |
|
|||
Built-in Administrator acct. for Domain be password never expires?
In ,
- - typed: Are there any risks associated with an expired built-in Administrator password? I've been googling but can't seem to quite get results that speak to this issue. You can't make the built-in domain admin account password expire, to the best of my knowlege. Really, nobody should be using that account for their admin work anyway, nor should it be used to run system services. Just set it up with a good, complex password, write that down on a piece of paper and put it in a sealed envelope, and give that to the company owner so that he or she can fire the entire IT department without getting screwed over. Any techs working on the network should have two accounts - one for daily use (user only), and another that has the delegated domain permissions they need to do their jobs. Complex passwords & regular changes should be forced. This is an "ideal world" setup, but hey, we can strive for that, right? |
|
|||
Built-in Administrator acct. for Domain be password never expires?
I have to go with Lanwench on this one. Complexity is good. Keep it in a safe. Break glass in
case of emergency Brian In article , - says... So is it better practice to have it expire, or to never expire? "Brian Komar [MVP]" wrote in message om... In article , - says... Are there any risks associated with an expired built-in Administrator password? I've been googling but can't seem to quite get results that speak to this issue. The risk is that you cannot log in with the account once the password has expired without resetting it. If an attacker is able to determine the original password, due to poor password implementation, they could change the password from under you. Brian |