lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Sun, 2 Dec 2007 20:04:42 -0500
From: "Dude VanWinkle" <dudevanwinkle@...il.com>
To: Valdis.Kletnieks@...edu
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: need help in managing administrators

On Dec 2, 2007 4:04 PM,  <Valdis.Kletnieks@...edu> wrote:
> On Sun, 02 Dec 2007 15:32:22 EST, T Biehn said:
> > Clearly stated, he was cleaning up DOMAIN Administrators, which can,
> > you know, Administer all the computers on the domain.
>
> What, you don't think that some people are unfortunate enough to be newcomers
> to the field, and their first assignment is to clean up a net that an even
> less clued predecessor set up with 'users-as-domain-admins' because the
> previous guy didn't know the difference between -as-admin and -as-domain-admin?
>
> Keep in mind that we were *all* that clueless at one time.  For some of us,
> it was 30 years ago, for others it's 30 hours ago.

Anyone who was a security expert 30 yrs ago should be ridiculed. Their
job description was "I inspect all 5 & 1/4 disks that get mailed to
us" and should be a reason NOT to hire them :-P

> > I guess we'll all just denounce our friend here for even thinking he
> > could ask a question as STUPID and RIDICULOUS as this one, instead of
> > actually knowing or thinking about one could do.

Whatever, just add a local account that has write access to
c:\progra~1\ and HKLM/Software, and grant the users read access to the
same (xcacls and regedt32 + logon.bat will do this for you) and you
are good.

-JP

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ