Sign in with
Sign up | Sign in
Your question

Dummy Admin Account

Last response: in Windows XP
Share
March 18, 2013 2:33:03 PM

Hey Im new to the forums. Just wanted to post something I was working on.

I was going through my XP home system and making some security changes. In the process I decided to create a dummy admin account. My changes created some interesting affects....

I changed the administrator name to guest and guest name to administrator.

But left the admin ( now guest ) in the Admin group. Also leaving the newly named Admin in the guest group.

This confuses XP badly. Would it stump an intruder....doubt it. Slow them down, possibly.

After setting the new passwords for both accounts. I began to look into setting privilege limitations on the guest account. I noticed in the User Accounts program, that once I selected the new Admin going back or home was not an option. I closed the program and restarted it. Only to find the original Admin was no longer a selection. The dummy was all there was.

I rebooted the box and the new Administrator was the only login selection. I entered password and on go, I got a message stating the account was locked out contact your Admin. So I punched in ctrl+alt+del ( x2 ) entered the real Admin login info and I was back at the desktop.

So I got to thinking if a Skiddy came poking around and took the time to crack the pass and attempt to log in they would be slightly irritated. As the account comes up enabled and on. But on pass entry it comes up locked. Also this method provides a level of physical security as well.

Any thoughts, suggestions, or similar to discuss?

Security Check List Reference: http://labmice.techtarget.com/articles/winxpsecurityche...

More about : dummy admin account

a b 8 Security
March 18, 2013 7:22:18 PM

Ah yes, security through obscurity. It might slow down an amateur, but give a pro physical access to the box and they won't even break a sweat. With the right tools it takes only seconds to identify the real local admin account and change its password. Heck, with the right tools one doesn't even have to log on to the box to have full access to all files, and have the ability to enable/disable services and devices. That's what encryption is designed to prevent.
March 18, 2013 10:03:02 PM

ex_bubblehead said:
Ah yes, security through obscurity. It might slow down an amateur, but give a pro physical access to the box and they won't even break a sweat. With the right tools it takes only seconds to identify the real local admin account and change its password. Heck, with the right tools one doesn't even have to log on to the box to have full access to all files, and have the ability to enable/disable services and devices. That's what encryption is designed to prevent.


Yes indeed. It is a meager attempt to slow an amateur down at best. And yes a "pro" with tools would make short work of most trip falls. Im sure an "expert" without tools and some home made wares could do it as well.

You mentioned encryption!? What is your suggestions on that topic?
Related resources
March 19, 2013 6:22:00 PM

ex_bubblehead said:
If running Windows Vista, or 7 Ultimate/Enterprise then BitLocker is your friend:

http://windows.microsoft.com/en-us/windows-vista/bitloc...
http://windows.microsoft.com/en-us/windows7/products/fe...

There's also the opensource Truecrypt: http://www.truecrypt.org/




No I still use Win XP. I have been refusing to use Vista and Win8. I may check out Win 7. But in the meantime I prefer Linux. I use Win Xp for general purposes of work requiring Win compatible.

Ill look into encryption for XP. Thanks

!