NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > FOCUS-MS> 2005-q4

Re: Changing local admin PW using vb logon script - can it be encrypted?

From: Ivan Carlos (icarlosicarlos.net)
Date: Thu Dec 01 2005 - 16:27:32 CST

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

i'm using this - http://www.sysinternals.com/Utilities/PsPasswd.html

The problem is: white the same password in all machines

i recommend to apply different passwords in groups, enumerating via script
logon (if necessary, u can use sanur - www.commandline.co.uk/sanur/)

[]'s!

Ivan "Doomer" Carlos
Network Admin & Security
Social Engineering Specialist
Cell.: +55 (11) 8112-0666
--
AIM / Gizmo / GTalk / Skype / Y!M: ivandoomer
E-mail / MSN: icarlosicarlos.net
WebSite: www.icarlos.net
--
Hacking: http://hacking.doomer.ws
--------------------------------------------------

----- Original Message -----
From: <tth8cornell.edu>
To: <focus-mssecurityfocus.com>
Sent: Thursday, December 01, 2005 3:02 PM
Subject: Changing local admin PW using vb logon script - can it be
encrypted?

> Hi all,
>
> Long time lurker, first time poster. We have roughly 500 computers that
> we'd like to change the local admin passwords on. We realize the security
> risks of having 1 password on all of our computers and are willing to
> assume that risk. We've developed a VB script that we can implement as a
> logon script that works perfectly to change the password. We do not want
> this script sent along as clear text if we can avoid it. Is there any way
> we can encrypt this script?
>
> We've looked at options such as using Windows permissions to either deny
> Domain Users access (preventing anyone from reading the script) or
> allowing only Domain Computers Read Only access.however I think that if
> you are logged into a local computer you should be able to read the
> script. Not to mention, if you could capture the packets, you could
> easily find the script and its contents so permissions would matter at all
> in that scenario.
>
> Any help and/or insight is greatly appreciated.
>
> Best,
> .tom
>
> ---------------------------------------------------------------------------
> ---------------------------------------------------------------------------
>
>

---------------------------------------------------------------------------
---------------------------------------------------------------------------

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]