Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Password Protected Screen Saver and Administrative Password

from [Benjamin D. Goldman] Network Security [Permanent Link]
Subject: RE: Password Protected Screen Saver and Administrative Password
Date: Tue, 8 Feb 2005 18:35:12 -0500 
im not sure why you have a problem:

why not just create an account on the computer that has all the permissions 
necessary to run the applications you think you ahve to run in the user 
session, and give the username and password to the remote support group?

Dont leave your "screen saver" "protected" session open as administrator, or 
YOU - leave it open as the account you want the remote support group to use.

for anyone who is wondering why they are using go to my pc - its most likely 
because they cannot support all the stuff needed to get a secure connection to 
the machine otehrwise (VPN, etc etc etc) otherwise, they could just run 
terminal services, etc.

Incidentally - if you can move off go to my pc, and use a controlled VPN, etc, 
you might also want to consider why the server even needs to be logged in 
(which would create the screen saver situation in the first place)

Most applications that people think need to be run in a user session can 
actually be put on timers, etc and run without a session open.



-----Original Message-----
From: Brady McClenon [mailto:mcclenon@albany.edu]
Sent: Tuesday, February 08, 2005 1:45 PM
To: tom.milliner@verizon.net
Cc: focus-ms@securityfocus.com
Subject: Re: Password Protected Screen Saver and Administrative Password



Is there a reason you can not logout, so the problem never exists?  What if
the third-party support used terminal services to logon?

Brady McClenon
SUNY Albany


Does someone know a way to allow a normal user to
release a server password protected screen-saver
without giving the user the administrator password?

I need this so that third-party support can access
our server via GoToMyPC when I am not there.  The
password protected screen-saver blocks them from
remote access to fix problems.  I cannot always be
on-site to assist by supplying the screen-saver
password.


Tom Milliner, CPA, MCSE
tom.milliner@verizon.net




---------------------------------------------------------------------------
---------------------------------------------------------------------------






---------------------------------------------------------------------------
---------------------------------------------------------------------------


---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Password Protected Screen Saver and Administrative Password, Murad Talukdar
Next by Date:  RE: Password Protected Screen Saver and Administrative Password, Tom Milliner
Previous by Thread:  RE: Password Protected Screen Saver and Administrative Password, Beauford, Jason
Next by Thread:  RE: Password Protected Screen Saver and Administrative Password, Tyson Leslie
Indexes:  [Date] [Thread] [Top] [All Lists]