RE: local admin account password
From: Mark Ribbans (mark.ribbans_at_ctel.com.au)
Date: 11/26/03
- Previous message: Thor: "Re: are my binaries being exposed on my ASP.NET website?"
- In reply to: Eli Allen: "local admin account password"
- Next in thread: Tyler Larson: "RE: local admin account password"
- Reply: Tyler Larson: "RE: local admin account password"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: <focus-ms@securityfocus.com> Date: Wed, 26 Nov 2003 13:58:40 +1030
>Say you have more then 1000 systems, how do you handle the local admin
>account password on the machines? (assuming it needs to be available for
>extreme cases to get into the machine as you'd normally just use a domain
login)
>3) Use a password scheme where the password is basically the same on all
box
>except its based on something specific about the server. This means if
>someone figures out the scheme (cracking a single box and figuring it out
or
>just gets told) they basically made this as good as the first idea I list.
Hi,
What i would do (and do do) is set up a password scheme as you suggested in
option 3. Just keep the scheme\algorithm to yourself or your IT team.
There are a number of ways you can get specific information regarding each
specific PC, and you can then use part of this information as the password.
Two good examples of this would be the CPU ID (if enabled in the BIOS -
which you could then disable and then set a BIOS password too for added
security?) and the MAC Address.
To get the CPU ID you can query it with WMI:
(just copy\paste into notepad and rename as CPU_ID.vbs)
----------------------------------------------------------
Dim oWMI, oCPU
Set oWMI = GetObject("winmgmts://")
For Each oCPU In oWMI.instancesof("Win32_Processor")
msgbox "Your CPU ID is: " & oCpu.processorid
Next
----------------------------------------------------------
To get the MAC address you can either do a ipconfig/all from a command
prompt or do it with WMI:
(just copy\paste into notepad and rename as MacAddress.vbs)
----------------------------------------------------------
Dim oWMI, oNIC
Set oWMI = GetObject("winmgmts://")
For Each oNIC In oWMI.instancesof("Win32_NetworkAdapter")
msgbox "Your MAC address is: " & oNIC.macaddress
Next
----------------------------------------------------------
WMI is very cool and you could even write a simple script or program to
remotely retrieve this information from all your workstation very quickly. -
If you were really clever you could probably even write the local admin
passwords back to each box and do it all in one go! :)
Hope this helps,
Cheers,
Mark Ribbans
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Previous message: Thor: "Re: are my binaries being exposed on my ASP.NET website?"
- In reply to: Eli Allen: "local admin account password"
- Next in thread: Tyler Larson: "RE: local admin account password"
- Reply: Tyler Larson: "RE: local admin account password"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
