Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Changing local admin PW using vb logon script - can it be encrypted?

from [Tevfik Karagülle] Network Security [Permanent Link]
Subject: RE: Changing local admin PW using vb logon script - can it be encrypted?
Date: Fri, 2 Dec 2005 10:15:14 +0100 
Hi,

Check out my utility chwinpw at http://itefix.no/chwinpw :

Chwinpw is a small command line utility that can securely change passwords on 
remote/local windows
machines. By periodic password maintenance of your vital accounts, chwinpw can 
help you to enforce a
higher degree of security in your environment. Chwinpw supports also service 
accounts. Chwinpw can
be run from a logon script or from a central location. It is also possible to 
instruct chwinpw to
make bulk changes.

Rgrds

Tev



-----Original Message-----
From: FFinley@hrsic.uscg.mil [mailto:FFinley@hrsic.uscg.mil] 
Sent: 1. desember 2005 18:39
To: tth8@cornell.edu; focus-ms@securityfocus.com
Subject: RE: Changing local admin PW using vb logon script - 
can it be encrypted?

I have used a similar method in the past at other locations.

One of the easier ways is to run this vbscript on an 
administrators machine, against all of the computers you want 
to change the password on, rather than having the individual 
machines run the script.  If you create an HTA to use your 
vbscript and have two input boxes that give the username and 
password that you are changing to the script as you run it, 
then accessing files with a saved username and password 
doesn't happen. 

-Frank

-----Original Message-----
From: tth8@cornell.edu [mailto:tth8@cornell.edu]
Sent: Thursday, December 01, 2005 11:03 AM
To: focus-ms@securityfocus.com
Subject: Changing local admin PW using vb logon script - can 
it be encrypted?

Hi all,

Long time lurker, first time poster.  We have roughly 500 
computers that we'd like to change the local admin passwords 
on.  We realize the security risks of having 1 password on 
all of our computers and are willing to assume that risk.  
We've developed a VB script that we can implement as a logon 
script that works perfectly to change the password.  We do 
not want this script sent along as clear text if we can avoid 
it.  Is there any way we can encrypt this script?  

We've looked at options such as using Windows permissions to 
either deny Domain Users access (preventing anyone from 
reading the script) or allowing only Domain Computers Read 
Only access...however I think that if you are logged into a 
local computer you should be able to read the script.  Not to 
mention, if you could capture the packets, you could easily 
find the script and its contents so permissions would matter 
at all in that scenario.  

Any help and/or insight is greatly appreciated.

Best,
...tom

--------------------------------------------------------------
-------------
--------------------------------------------------------------
-------------

--------------------------------------------------------------
-------------
--------------------------------------------------------------
-------------





---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Changing local admin PW using vb logon script - can it be encrypted?, vaviles
Next by Date:  Re: Changing local admin PW using vb logon script - can it be encrypted?, Ivan Carlos
Previous by Thread:  RE: Changing local admin PW using vb logon script - can it be enc rypted?, Finley, Francis
Next by Thread:  RE: Changing local admin PW using vb logon script - can it be enc rypted?, Sewell, Cathy
Indexes:  [Date] [Thread] [Top] [All Lists]