disclosure the administrative password

From: Boris Skoblo (borsk_at_techunix.technion.ac.il)
Date: 02/01/05

Next message: John Madden: "Wireless GPO"

Previous message: Howard, Ken: "RE: Preventing multiple logins in 2003"
Next in thread: Thor: "Re: disclosure the administrative password"
Reply: Thor: "Re: disclosure the administrative password"
Maybe reply: Tom Stowell: "Re: disclosure the administrative password"
Maybe reply: Boris Skoblo: "Re: disclosure the administrative password"
Reply: cyberpixl: "Re: disclosure the administrative password"
Reply: Andrew Rice: "Re: disclosure the administrative password"
Maybe reply: skander.ben.mansour_at_accenture.com: "RE: disclosure the administrative password"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: <focus-ms@securityfocus.com>
Date: Tue, 1 Feb 2005 14:50:08 +0200

Hi All,

There is a usual situation: on normal users computers ( W2k and Winxp ) an
administrator should perform an administrative actions
(for example, with help RunAs) thus the administrative password is entered.
Do exist a potential possibility that on the user's computer
there is keylogger.

What ways to perform administrative operations exist, thus not endangering
disclosure the administrative password? There are some limitations:

1. usage of smarts-cards and others hardvare devices are not applicable .

2. performed operations cannot be delegated for various reasons

3. keylogger is custom designed and any of existing protective software yet
does not find out it

------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

Regards,

Boris Skoblo

---------------------------------------------------------------------------
---------------------------------------------------------------------------

Next message: John Madden: "Wireless GPO"

Previous message: Howard, Ken: "RE: Preventing multiple logins in 2003"
Next in thread: Thor: "Re: disclosure the administrative password"
Reply: Thor: "Re: disclosure the administrative password"
Maybe reply: Tom Stowell: "Re: disclosure the administrative password"
Maybe reply: Boris Skoblo: "Re: disclosure the administrative password"
Reply: cyberpixl: "Re: disclosure the administrative password"
Reply: Andrew Rice: "Re: disclosure the administrative password"
Maybe reply: skander.ben.mansour_at_accenture.com: "RE: disclosure the administrative password"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Unauthorized Monitoring of Email
... were REQUIRED to give the administrative password to the NEW OWNER'S ... administrative account as well as the local admin account on the individual ... read permissions on the store to the Administrator account. ...
(microsoft.public.windows.server.sbs)
Re: disclosure the administrative password
... What actions does the admin have to ... to initiate administrative tasks which bypass the hardware keystroke logger ... Subject: disclosure the administrative password ... > an administrator should perform an administrative actions ...
(Focus-Microsoft)
RE: Want to be administrator
... how would you do a REPAIR installation of XP home if it requires you to type ... in the administrative password before you can continue and you cannot access ... any user accounts features? ... keeps telling me I need to be an administrator. ...
(microsoft.public.windowsxp.security_admin)
Unauthorized Monitoring of Email
... Change the administrative password - From what I understand, ... administrative account as well as the local admin account on the individual ... read permissions on the store to the Administrator account. ...
(microsoft.public.windows.server.sbs)
Re: disclosure the administrative password
... >) an administrator should perform an administrative actions ... thus the administrative password is ... > What ways to perform administrative operations exist, ... keylogger is custom designed and any of existing protective ...
(Focus-Microsoft)