Educause Security Discussion mailing list archives

Re: Reviewing Security Policy

From: Lee Weers <weersl () CENTRAL EDU>
Date: Thu, 6 Mar 2008 09:46:49 -0600

On the systems I manage I rename the local admin account to something
other than Administrator, root, or admin.  On the servers each local
admin account is different for each server.

At another job we disabled the local admin account and created an
account named Backdoor that had local admin privileges. 

-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv
[mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Sabo, Eric
Sent: Thursday, March 06, 2008 9:31 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Reviewing Security Policy

We are reviewing our current security policy for our Microsoft products.
We use MSBA all the time but we were wondering if there are any better
free tools out there to seek our vulnerabilities in Microsoft products.

How does every handle their local admin accounts for their windows
desktop?     We are thinking about disabling the local administrator
account via group policy, has anyone ever attempted to do this?  Are
there any other methods we could use?


Thanks in advance,
Eric Sabo

Current thread:

Reviewing Security Policy Sabo, Eric (Mar 06)
- <Possible follow-ups>
- Re: Reviewing Security Policy Holland, Richard H (Mar 06)
- Re: Reviewing Security Policy Lee Weers (Mar 06)
- Re: Reviewing Security Policy Sabo, Eric (Mar 06)
- Re: Reviewing Security Policy Jenkins, Matthew (Mar 06)
- Re: Reviewing Security Policy Sabo, Eric (Mar 06)
- Re: Reviewing Security Policy Jenkins, Matthew (Mar 06)