It's a somewhat little-known (though probably well known around here) fact
that renaming the administrator account only buys you a limited increase in
security.
The administrator RID (relative ID) is ALWAYS 500. Even if you rename it, by
enumerating the SID for the Domain Users group and then chan
That works in a small environment but not in an enterprise setting where you
may have hd staff who have never met many of the users.
As part of the initial user setup we have each user pick a question and
provide the answer for it. That goes into our call tracking system and only
the HD staff can
-Original Message-
From: Kline, Nathan C - CICT-2 [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, September 25, 2002 1:47 PM
To: 'Schuler, Jeff'; [EMAIL PROTECTED]
Subject: RE: Network Address Translation insecurities
How about the fact that an attack can come from inside your firewall? You
I am looking for information regarding the insecurities and vulnerabilities
that exist in Network Address Translation. One of our admins feels that
because everything is NAT'd that there is no way anyone can break into the
systems that are NAT'd. I know that this is not a completely accurate
sta
