Re: WinNT/2000 screen saver with password and Logoff?

From: Bruce Chambers (bchambers@nospam.cableone.net)
Date: 08/18/02 

From: "Bruce Chambers" <bchambers@nospam.cableone.net>
Date: Sat, 17 Aug 2002 20:07:42 -0600

Greetings --

    I'm not aware of anyway to grant "unlock" privileges to anyone but
administrators. This may be one of the few instances where Windows security
surpasses that of Unix.

HTH&GL,

Bruce Chambers
__
Always store beer in a dark place. -- RAH

"David Matten" <david@spambitbucket.xyris.com> wrote in message
news:WQz79.17199$Ep6.1349222@bgtnsc05-news.ops.worldnet.att.net...
> In the intended environment, if the person didn't save their work before
> they walked away, that's tough luck. If logout is forced, and only user
> programs are killed, I don't see why the registry should be corrupted.
> Explorer often needs to be killed, with no visible after affects.
However,
> the behavior you describe re unlocking by an administrator sounds like
what
> I want. But I can't give the users blanket Administrator rights. Perhaps
> setting up a group that has only rights to force logout? Is there any
such
> thing? Power cycle is undesirable in this circumstance.
>
> <nospam.please@ualberta.ca> wrote in message
> news:ajjjrm$bis$1@pulp.srv.ualberta.ca...
> > In addition, if someone other than the user unlocks it (i.e. an
> > administrator), it logs them off without the chance to save any work in
> > programs that are open. Of course, if a user locks a session on a
public
> > computer that is shared with other users and leaves files open for
longer
> > than a few minutes, they may get what they deserve.
> > You could just press the reset or power button on the computer and get
> about
> > the same effect (or worse).
> > UNIX can allow this sort of thing more easily because it usually doesn't
> leave
> > files open in an unsaved state as much as Windows does (and everything
> > isn't piled into a single registry file to get corrupted).
> >
> > In article <ulqg1a3khm63b8@corp.supernews.com>, "Bruce Chambers"
> > <bchambers@nospam.cableone.net> wrote:
> > |Greetings --
> > |
> > | So, essentially, you're looking for a way to circumvent WinNT/2K's
> > |security model? Password-protected screensavers are built in to both
> > |operating systems. But, for obvious security reasons, only the
> currently
> > |logged in user or someone trusted with administrative privileges, can
> unlock
> > |the workstation. I don't think you'll find what you're looking for.
> > |
> > |HTH&GL,
> > |
> > |Bruce Chambers
> > |__
> > |Always store beer in a dark place. -- RAH
> > |
> > |
> > |"David Matten" <david@spambitbucket.xyris.com> wrote in message
> > |news:gGa79.15291$Ep6.1202942@bgtnsc05-news.ops.worldnet.att.net...
> > |> I have looked for this animal, but have not found it. I want a
screen
> > |saver
> > |> that will lock and prompt for a password after it activates, but
allow
> a
> > |new
> > |> user to logoff the previous user if they don't know the password. I
> have
> > |> seen this in UNIX cluster environments, but cannot find it for
> Windows.
> > |>
> > |> Anyone ever heard of one?
> > |>
> > |> --
> > |> To reply directly, remove the hostname from the reply address
> > |>
> > |>
> > |>
> > |
> > |
>