Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security ISSForum
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ISSForum] Better way for scanning Windows than creating an admin accoun

from [sk00t] Network Security [Permanent Link]
Subject: [ISSForum] Better way for scanning Windows than creating an admin account?
Date: Wed, 21 Dec 2005 10:36:28 -0600 (CST) 
I have been researching the need for an account with administrative rights for 
running scans of Windows boxes. Our NT administrators are uncomfortable with 
this, and I think understandably so. If someone came to me and said they needed 
a service account with admin access to all boxes on the domain for their 
application to run, I would tell them it's a really bad idea, so it reflects 
poorly on us when the security team is asking for this, doesn't it?

Has anyone found a better way to do this? With Nessus (ahem), I have been able 
to create a non-admin account with interactive login disabled and just rights 
to specific registry keys to perform scans for patches. Can I do the same, or 
something similar for Scanner?

To me this is a much better way to do this, because it's more suited to leaving 
the account enable for automated scans.

Any thoughts from the group?


Thanks!


-- sk00t

_______________________________________________
ISSForum mailing list
ISSForum@iss.net

TO UNSUBSCRIBE OR CHANGE YOUR SUBSCRIPTION, go to 
https://atla-mm1.iss.net/mailman/listinfo/issforum

To contact the ISSForum Moderator, send email to mod-issforum@iss.net

The ISSForum mailing list is hosted and managed by Internet Security Systems, 
6303 Barfield Road, Atlanta, Georgia, USA 30328.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [ISSForum] Better way for scanning Windows than creating an admin account?, sk00t <=
Previous by Date:  [ISSForum] Fusion and Internet Scanner, Stewart, Derek
Next by Date:  Re: [ISSForum] Fusion and Internet Scanner, Massimo
Previous by Thread:  [ISSForum] Fusion and Internet Scanner, Stewart, Derek
Next by Thread:  [ISSForum] Restoring DBMS Backup, Hee Kiong
Indexes:  [Date] [Thread] [Top] [All Lists]