Lock Computer withour revealing user name?

[Guest]

Archived from groups: microsoft.public.win2000.security (More info?)

I have my Win2000Pro systems configured to not fill in the last user
name in the login screen, so as to not give any clues whatsoever to an
intruder. (You never know how obvious a user will insist on making
their password.)

Problem: when the computer is locked via Ctrl-Alt-Del + Enter the
dialog asking for a password to unlock it still reveals the login name
of the current user.

How can I make Win2000Pro hide the user name in that dialog?

Thanks for any information!

 

[Guest]

Archived from groups: microsoft.public.win2000.security (More info?)

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

John A. regaled us with the following:

> I have my Win2000Pro systems configured to not fill in the last user
> name in the login screen, so as to not give any clues whatsoever to an
> intruder. (You never know how obvious a user will insist on making
> their password.)
>
> Problem: when the computer is locked via Ctrl-Alt-Del + Enter the
> dialog asking for a password to unlock it still reveals the login name
> of the current user.
>
> How can I make Win2000Pro hide the user name in that dialog?
>
> Thanks for any information!

I suggest you enforce strong(er) passwords...

- --
Skorpion [skorpion at suespammers dot org]
"Don't attribute to malice that which can be adequately explained by
stupidity."

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFBYhTecTBCVvf50kkRAh8mAJwP3Y6+BY1FiaHsdCHtW77IbQ2smgCfQ9Y5
Rq/Uc8SdplUsu/MxMN0fokA=
=sJTh
-----END PGP SIGNATURE-----

 

[Guest]

Archived from groups: microsoft.public.win2000.security (More info?)

You can not change that behavior. The option is to logoff instead. ---
Steve


"John A." <no.john@spammers.virgi.niaqui.lter.allowed.com> wrote in message
news:1o14m094bud5tadara7bmmtrfnqiusr242@4ax.com...
>I have my Win2000Pro systems configured to not fill in the last user
> name in the login screen, so as to not give any clues whatsoever to an
> intruder. (You never know how obvious a user will insist on making
> their password.)
>
> Problem: when the computer is locked via Ctrl-Alt-Del + Enter the
> dialog asking for a password to unlock it still reveals the login name
> of the current user.
>
> How can I make Win2000Pro hide the user name in that dialog?
>
> Thanks for any information!

 

[Guest]

Archived from groups: microsoft.public.win2000.security (More info?)

You would have to write your own Gina.

--
Joe Richards Microsoft MVP Windows Server Directory Services
www.joeware.net



John A. wrote:
> I have my Win2000Pro systems configured to not fill in the last user
> name in the login screen, so as to not give any clues whatsoever to an
> intruder. (You never know how obvious a user will insist on making
> their password.)
>
> Problem: when the computer is locked via Ctrl-Alt-Del + Enter the
> dialog asking for a password to unlock it still reveals the login name
> of the current user.
>
> How can I make Win2000Pro hide the user name in that dialog?
>
> Thanks for any information!

 

[Guest]

Archived from groups: microsoft.public.win2000.security (More info?)

On Tue, 05 Oct 2004 20:07:23 -0400, "Joe Richards [MVP]"
<humorexpress@hotmail.com> wrote:

>You would have to write your own Gina.

Interesting. Could the existing DLL possibly be hacked with a resource
editor to perhaps change the text color of the user name to match the
background? Or would that be detected as a possible security breach
via some sort of checksum?

 

[Guest]

Archived from groups: microsoft.public.win2000.security (More info?)

That would definitely be unsupported.

--
Joe Richards Microsoft MVP Windows Server Directory Services
www.joeware.net



John A. wrote:
> On Tue, 05 Oct 2004 20:07:23 -0400, "Joe Richards [MVP]"
> <humorexpress@hotmail.com> wrote:
>
>
>>You would have to write your own Gina.
>
>
> Interesting. Could the existing DLL possibly be hacked with a resource
> editor to perhaps change the text color of the user name to match the
> background? Or would that be detected as a possible security breach
> via some sort of checksum?