RE: Domain User has no password

[Overcash, Kevin (ISSAtlanta)]

Title: RE: Domain User has no password

The short description for this check is incomplete.  This check is actually checking to see if a password is required.  Here is the more detailed description of the check:

 

A Domain User account has been detected with no password required. No password requirement allows attackers unauthorized access to the host, including the ability to take over and replace processes, and access other computers on the network.

 

I am still looking into why a group is being reported as a user.

 

Kevin

 

============================================
Kevin Overcash
Technical Product Manager
[EMAIL PROTECTED]

Internet Security Systems, Inc.
(678) 443-6000 / Direct Dial (678) 443-6144 /fax (678) 443-6479
www.iss.net

Adaptive Network Security for the Enterprise
============================================
 

-----Original Message-----
From: Ashworth, Richard RCERT-CONUS [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, April 04, 2000 8:39 PM
To: '[EMAIL PROTECTED]'; '[EMAIL PROTECTED]'
Subject: RE: Domain User has no password

All,
I missed the responses to this, and have also run into the problem recently.  Any comments?

-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Monday, February 21, 2000 4:13 AM
To: '[EMAIL PROTECTED]'
Subject: Domain User has no password

TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED]  Contact [EMAIL PROTECTED] for help with any problems!
----------------------------------------------------------------------------

Hey Y'all

I get this high error when using the ISS internet scanner: "Domain User has no
password".
But the Domain User, is a group, not a user account. So what is up with that?!
Allso do U have some homemade profiles for the scanner, for NT & Unix &
Firewalls& Routers? if U have, could U email them to me?
Please get back to me ASAP!

Thanx

P

**********************************************************************
Denne email og alle filer vedlagt som bilag kan indeholde fortroligt
materiale, der kun er beregnet for adressaten, og maa ikke udleveres
eller kopieres til uvedkommende.  Har De ved en fejltagelse modtaget
denne email, bedes De venligst omgaaende meddele os dette pr.
telefon: 35824848.  Paa forhaand tak.
        ***************************************************
This email and any files transmitted with it may contain confidential
information for the adressee(s) only.  The information is not to be
surrendered or copied to unauthorised persons.  If you have received
this communication in error, please notify us immediately by
telephone: +45 35824848.  Thank you.
**********************************************************************