Originally posted here by slarty
NOOO
you totally missed the point, idiot!

Having a blank admin password is the security risk.

NOT the default shares.

Having disabled default shares, admin users CAN STILL, REMOTELY, DO ANYTHING

Just because you can't access C$, doesn't mean you can't own the machine with the admin pw.

Slarty
no i didnt miss the point. i realize that the shares in itself are not a security risk. but combined with the null admin pass it is a security risk. hell a null admin pass in itself is NOT a security risk if the users cant do anything with it. as i said i cant add a pass because my dad wants functionality over security.