Network security.

TheMSsForum.com: The Microsoft Software Forum

I am part of a smaller network (25 or so). It is my understanding that i am
not supposed to give out my log-on password to anyone. This keeps my PC
secure. This is why the password tab on the server for me comes up with
astricks. If they want into my PC they (the administrator of the network)
should have the local password for my PC. Is this right or should I give up
my password?
Top

Re: Network security. by Dave

Dave
Sun Mar 20 09:36:45 CST 2005


"Paul" <Paul@discussions.microsoft.com> wrote in message
news:85FDD6A3-BE67-4AF1-8376-F447472E5FF5@microsoft.com...
> I am part of a smaller network (25 or so). It is my understanding that i
am
> not supposed to give out my log-on password to anyone. This keeps my PC
> secure. This is why the password tab on the server for me comes up with
> astricks. If they want into my PC they (the administrator of the network)
> should have the local password for my PC. Is this right or should I give
up
> my password?

you should never give out your password. if an admin needs access they
should use the administrator account that they should have the password for
(and you shouldn't), or if in a domain type office network they can use the
domain admin account also.


Top

Re: Network security. by Karl

Karl
Sun Mar 20 09:43:07 CST 2005

There are a few things they can only easily do by logging in as you,
particularly working on applications. It is better security if they use
their own account with their own password, but sometimes this doesn't let
them do what they want, or they aren't 100% certain that your account is
still 100% functional and up to date after the changes they made while
logged in as themselves.


"Paul" <Paul@discussions.microsoft.com> wrote in message
news:85FDD6A3-BE67-4AF1-8376-F447472E5FF5@microsoft.com...
> I am part of a smaller network (25 or so). It is my understanding that i
am
> not supposed to give out my log-on password to anyone. This keeps my PC
> secure. This is why the password tab on the server for me comes up with
> astricks. If they want into my PC they (the administrator of the network)
> should have the local password for my PC. Is this right or should I give
up
> my password?


Top

Re: Network security. by Vanguard

Vanguard
Sun Mar 20 11:24:01 CST 2005

"Paul" <Paul@discussions.microsoft.com> wrote in message
news:85FDD6A3-BE67-4AF1-8376-F447472E5FF5@microsoft.com...
>I am part of a smaller network (25 or so). It is my understanding that
>i am
> not supposed to give out my log-on password to anyone. This keeps my
> PC
> secure. This is why the password tab on the server for me comes up
> with
> astricks. If they want into my PC they (the administrator of the
> network)
> should have the local password for my PC. Is this right or should I
> give up
> my password?


The admin won't know your password. It is ENCRYPTED! Your password is
hidden to everyone; otherwise, there would be no security. If you don't
want to divulge your password because you want to continue using it,
tell the admin to *reset* your password that whatever they like while
they need to access your account. They need to tell you what they reset
it to. Then you reset that temp password they used to whatever you used
before. However, some policies may be defined that block reusing the
same password for awhile, like recording a history of, say, 10
previously used passwords and not allowing you to reuse your old
password until you have defined 10 others in the meantime. You might
think that you could simply reset your password 10 times to push out
your old one from the history list but policies might also be in place
as to how often you can change your password, like 14 days which would
mean it would be 140 days before you could go back to your old password.
It all depends on how strong are the password policies on your host. If
you can't use your old password, you could simply create a new (and
strong) password after the admin was done, but you need admin rights to
change your password.

As soon as they are done, change your password. Remember that you were
talking over the telephone with them and anyone listening (around you,
on an extension, or a wire tap) will know it. Once you divulge it, the
admin SHOULD immediately use it to then change your password so anyone
listening can't get in outside that small window of opportunity. Once
they are done, they should tell you what password they used so you can
IMMEDIATELY change it again.

--
____________________________________________________________
Post your replies to the newsgroup. Share with others.
E-mail reply: Remove "NIXTHIS" and add "#VS811" to Subject.
____________________________________________________________

Top

Re: Network security. by Nobody

Nobody
Mon Mar 21 08:20:38 CST 2005

If they need to log on as you they should have you sitting there with them
and YOU log on with your account. There should be no need for them
to have your password.

"Paul" <Paul@discussions.microsoft.com> wrote in message
news:85FDD6A3-BE67-4AF1-8376-F447472E5FF5@microsoft.com...
> I am part of a smaller network (25 or so). It is my understanding that i
am
> not supposed to give out my log-on password to anyone. This keeps my PC
> secure. This is why the password tab on the server for me comes up with
> astricks. If they want into my PC they (the administrator of the network)
> should have the local password for my PC. Is this right or should I give
up
> my password?


Top

Re: Network security. by Steven

Steven
Mon Mar 21 14:15:16 CST 2005

That is correct. Don't ever give your password out to anyone.Administrators
already have an administrator account on your computer to give themselves
access if they need it but not as YOU. An administrator could impersonate
you by resetting your password and logging on as you but it auditing of
account management is enabled on your computer then the password reset will
be recorded. An administrator could delete the security log though that in
itself would leave a security event and be reason to raise suspicion if you
did not request a password reset because you forgot your password.. ---
Steve


"Paul" <Paul@discussions.microsoft.com> wrote in message
news:85FDD6A3-BE67-4AF1-8376-F447472E5FF5@microsoft.com...
>I am part of a smaller network (25 or so). It is my understanding that i
>am
> not supposed to give out my log-on password to anyone. This keeps my PC
> secure. This is why the password tab on the server for me comes up with
> astricks. If they want into my PC they (the administrator of the network)
> should have the local password for my PC. Is this right or should I give
> up
> my password?


Top