Results 1 to 10 of 12

Thread: Securing the Box- Force autologin+startup

Thread Tools
- Show Printable Version
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

October 16th, 2005, 04:02 PM #12
kr5kernel

View Profile

View Forum Posts

Visit Homepage
Senior Member

Join Date

Mar 2004

Posts

347
Agreed, autologin through the registry leaves the password of the account in question in plain text...not a good thing.

If you are trying to lock down apps, i recommend using active directory on the domain and setting a group policy that ONLY allows the execution of specific program you decide to allow.

I have seen windows 2000 achines that had wireless cards auto login, and the network was not detected before the network credentials were sent, this leaves you with a logged in cached account with no policies in place, someone could fireup regedit grab the password and be on there way.

kr5kernel
(kr5kernel at hotmail dot com)
Linux: Making Penguins Cool Since 1994.
Reply With Quote

Quick Navigation Newbie Security Questions Top

« Previous Thread | Next Thread »

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

Forum Rules

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Thread: Securing the Box- Force autologin+startup

Thread Tools

Display

Threaded View

Posting Permissions