Re: password expiration policy for admin and system accounts ?

From: Wolf Kirchmeir (wolfekir_at_sympatico.ca)
Date: 10/20/05

• Next message: JJ: "Re: password expiration policy for admin and system accounts ?"
• Previous message: Roger Abell [MVP]: "Re: Users disappeare from security groups"
• In reply to: JJ: "Re: password expiration policy for admin and system accounts ?"
• Next in thread: JJ: "Re: password expiration policy for admin and system accounts ?"
• Reply: JJ: "Re: password expiration policy for admin and system accounts ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 20 Oct 2005 11:52:08 -0400

JJ wrote:
> Thank you for your reply.
>
> I would agree about the admin account, but what about system/service
> accounts used by different systems ?
[...]

Aren't these actually just another variety of administrative accounts?
IMO, you should consdier the advice given to you carefully, especially
the rule that more power an account has, the more it should be secured,
which of course implies both complex/long passowrds, and more frequent
changing thereof.

One of the things I find it difficult to get across to people is that
even their single home computers need constant vigilance -- until
something goes thoroughly wrong because of malware, after which some
people develop severe paranoia.

There is no simple easy solution to the problems of security, and
certainly no cheap one.

And that's my perspective from the p.o.v of a home user with three
machines that aren't even networked (although I plan to do it Real Soon
Now. :-))

• Next message: JJ: "Re: password expiration policy for admin and system accounts ?"
• Previous message: Roger Abell [MVP]: "Re: Users disappeare from security groups"
• In reply to: JJ: "Re: password expiration policy for admin and system accounts ?"
• Next in thread: JJ: "Re: password expiration policy for admin and system accounts ?"
• Reply: JJ: "Re: password expiration policy for admin and system accounts ?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: password expiration policy for admin and system accounts ? ... I would agree about the admin account, but what about system/service ... >> Our auditors are objecting to our having Domain Administrator and domain ... (microsoft.public.security) Re: password expiration policy for admin and system accounts ? ... I would agree about the admin account, but what about system/service ... >> Our auditors are objecting to our having Domain Administrator and domain ... (microsoft.public.win2000.security) Re: password expiration policy for admin and system accounts ? ... > I would agree about the admin account, but what about system/service ... the rule that more power an account has, the more it should be secured, ... even their single home computers need constant vigilance -- until ... (microsoft.public.security) Re: domain admin account impersontating ... i guees that the bottom line is that the domain admin account can be ... with the same username and password. ... Starting with Windows XP this became less simple, ... (microsoft.public.windows.server.security) Re: Virus is getting domain account listing ... In 2003 you can change the process ID of the admin account. ... Play with the net user command at your command prompt and see what ... dictionary attack against every single account could happen. ... (Focus-Microsoft)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint