Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: UF_PASSWD_NOTREQD user account flag

from [Brady McClenon] Network Security [Permanent Link]
Subject: RE: UF_PASSWD_NOTREQD user account flag
Date: Wed, 16 Mar 2005 16:25:50 -0500 
Petr,

What error is logged on the server/workstation and/or the DC when the logon
fails?  Is it Security event ID 534 ("The user has not been granted the
requested logon type at this machine") or something else?




-----Original Message-----
From: Matt [mailto:smp.repicky@gmail.com] 
Sent: Wednesday, March 16, 2005 3:53 PM
To: Petr Merta
Cc: focus-ms@securityfocus.com
Subject: Re: UF_PASSWD_NOTREQD user account flag

Not saying i've done any lookup on the flag or anything, but i know of a
local security policy setting that exists that says that user accounts
without passwords can only have console logon (log on locally).  Doesn't
explain why you can't access the machine without a password via SM.  I
believe network logon is controlled through the user rights assignment in
the local security settings (or domain if you're networked) on a per user
basis that can be set to allow/deny remote access to the machine to specific
users.  It also can be controlled through network access in the security
options tab.  There is one setting that is turned on by default with simple
file sharing that says all network access is performed as user guest.

Hope that gives you some hints.


--


On Wed, 16 Mar 2005 00:23:36 +0100, Petr Merta <pmerta@lynguent.com> wrote:

Hi all,

can anybody here explain the real meaning of UF_PASSWD_NOTREQD flag of 
Windows user account? I've found bunch of user accounts in W2K domain 
with this flag set; when I've tried to perform interactive or network 
logon with them, it failed. I've found no descriptive documentation 
besides of vague "password not required" statement. My questions are:
-- what's the actual meaning of this flag?
-- are there some circumstances under which it is possible to logon to 
account with this flag set (without password)?

Thanks for any info and/or reference.

Petr

----------------------------------------------------------------------
-----
----------------------------------------------------------------------
-----




---------------------------------------------------------------------------
---------------------------------------------------------------------------




---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Disabling USB mass storage, Alex
Next by Date:  Re: UF_PASSWD_NOTREQD user account flag, Petr Merta
Previous by Thread:  Re: UF_PASSWD_NOTREQD user account flag, Matt
Next by Thread:  RE: UF_PASSWD_NOTREQD user account flag, dave kleiman
Indexes:  [Date] [Thread] [Top] [All Lists]