G
Guest
Guest
Archived from groups: microsoft.public.windowsxp.security_admin (More info?)
I created a local "restricted" account on one of our Windwos XP Pro SP2
machines using the admin account. I then discovered later that that user had
somehow been given "administrator" rights on that machine.
Upon further investigation, I discovered that if you log on to an XP machine
using a "restricted" account, you can simply go into users and groups and
give your self "administrative" rights...
How can this be?? Does this not sound just WRONG to anyone?? Am I missing
something here??
What account should I be using to ensure that the user logging on can not
change their account type?? (we are using the CTRL/ALT/DEL method of
logging on - not the "easy" log on screen...
Thanks,
Brad
I created a local "restricted" account on one of our Windwos XP Pro SP2
machines using the admin account. I then discovered later that that user had
somehow been given "administrator" rights on that machine.
Upon further investigation, I discovered that if you log on to an XP machine
using a "restricted" account, you can simply go into users and groups and
give your self "administrative" rights...
How can this be?? Does this not sound just WRONG to anyone?? Am I missing
something here??
What account should I be using to ensure that the user logging on can not
change their account type?? (we are using the CTRL/ALT/DEL method of
logging on - not the "easy" log on screen...
Thanks,
Brad