Re: help! administrator password bared to all

From: Bryce (bryceATmiltonDOTcom)
Date: 06/02/02 

From: "Bryce" <bryceATmiltonDOTcom>
Date: Sat, 1 Jun 2002 17:59:41 -0700

    Yikes, A complete wipe and load of the machine and restoration of all
data from a last known good backup is highly recommended after any
root-level compromise. I wouldn't bring it back onto the net (including
your intranet) until you've done so. His advice about logging on as admin
to do admin things, and doing everything else as a limited user is good
advice. Lots of work, but what he's indirectly taught you is that when
you're logged on as an admin, any piece of executable code you run has the
potential to cost you hours or days of work in recovering from a serious
breach of security, whereas if you're logged on as a limited user, all you
need to do is delete that user profile.

-Bryce

"annalee" <anna@anna.com> wrote in message
news:93fb01c209c2$a40a7790$9ee62ecf@tkmsftngxa05...
> A big problem here! i emailed my workplace computer a
> calendar via my email; the next day the other secretary
> and i opened the email to pick out 1 of my calendars.
> When checking our company's mail we always right-click
> the email header and view "message source". Especially
> since we were receiving 5 to 8 emails per day "ala Klez"!
> (message source sender for Klez was "net.magic"; Yea,
> right - we've seen this magic before and hex is the
> better word). We received 24 total before linked
> businesses cleared up. Thankfully we were unscathed
> (norton deleted all), but when i checked email sent by me
> on "message source", ---THERE WAS MY COMPUTER'S PASSWORD,
> id #, data, etc. I read the article "why you should not
> run your computer as administrator" in Microsoft help but
> still unsure EXACTLY what to do. Can i just add "new
> user" in outlook? Thanks ahead for help! Am afraid to use
> my own computer! - miss novice annalee

Relevant Pages

  • Re: The Coalition against Personal Firewalls
    ... then anything *you* can do as an admin a malicious program can do as ... If you're running as a limited user you can't ... Internet can't do it either. ...
    (comp.security.firewalls)
  • Administrator/Limited User Accounts - cant view online streamin vi
    ... I have 1 Admin and 1 Limited User accounts. ... However, only if I am logged into my Admin a/c, I can still watch video on ...
    (microsoft.public.windowsxp.general)
  • Re: vista pia
    ... limit the user who need to be limited but as an admin you should have ... full access to your pc - including writing to program files folder ... There are other things like the extremly slow file operations (if Vista ... Limited User is one thing, ...
    (microsoft.public.fox.programmer.exchange)
  • Re: Admin - Limited user accounts.
    ... I understand that for ssecurity reasons you should not be using your Admin logon to visit the internet. ... So...why is it that not all software is transfered from the Admin account to the limited user account. ... that if I make an udate to the preinstalled Norton internet security on Admin that these updates are not passed over the all accounts on the computer. ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Nortons LiveUpdate fails for limited user.
    ... free tech support for more information. ... > Admin and the status updated after the usual 30 second delay. ... > also checked the limited user before signing on as Admin and I checked the ... >> administrator, using the RunAs command. ...
    (microsoft.public.windowsxp.general)