BigDaddy Posted April 10, 2004 Author Posted April 10, 2004 sounds like your workstation has been hacked,,, and some one has placed a new account on it or if its a server then they have an account on there... you should try to see if you can find any odd accountsIt is a server! But it doesn't have any strange new accounts. Except ADMINISTRATOR,GUEST,TOM
Famer Posted April 10, 2004 Posted April 10, 2004 you really think about changing them policys to more surcure ones those are the default settings,, but if you have no other user accounts then im kinda at a lost maybe the other guys in here can add more to this
BigDaddy Posted April 10, 2004 Author Posted April 10, 2004 you really think about changing them policys to more surcure ones those are the default settingsand how should I set them?btw. I'm using KERIO 2.15 and whatever test I throw at him it is STEALTH and have all the latest critical updates installed!!! Should I even worry about those policies??And another thing, since I'm the only one using the server machine I don't have any password for ADMIN or user TOM which has ADMIN priviligies. Is this a big security risk??
likuidkewl Posted April 10, 2004 Posted April 10, 2004 Although remote logins are disable by default for accounts with no passwords yo might want to double check that in your secpol, also admin should ALWAYS have a password, I have had this discussion before and you can remotely mount IPC$ shares on admin accounts without a password.
Famer Posted April 10, 2004 Posted April 10, 2004 @BigDaddy i had a windows 2000 workstation Hacked and a server version hacked too,,,mind you that was before i had full understanding about policy settings and hardware firewalls.. you should invest in the windows 2000 server security book or look on google for listings of templets you can downloadhttp://www.firstgov.gov/fgsearch/resultstr...s/WindowsXP.dochttp://www.firstgov.gov/fgsearch/resultstr...44/sp800-44.pdfhttp://www.nist.gov/hope this helps you
BigDaddy Posted April 13, 2004 Author Posted April 13, 2004 Uf my bad.. Forgot, on the ADMINISTRATOR user I have a password...Noone knows the solution to my prob?
hrp2171 Posted April 13, 2004 Posted April 13, 2004 Hi, BigDaddy!I have a Norton Ghost image that even when the Screensaver is set to none, it will still lock the screen after 15 mins. In order for me to disable it, I have to pick a Screensaver then clear the password protection.Terminals Services as well as Remote Desktop Connection will always ask for a login and a password. But by looking at the screenshot, I can tell the prompt box is coming from the screensaver settings.Hope this helps.
Recommended Posts
Please sign in to comment
You will be able to leave a comment after signing in
Sign In Now