Mike Mentges Security Engineer/Architect Global Security Technologies Inc.
"Security is not a solution, it is a way of life." -- Linux Administrators Security Guide
[EMAIL PROTECTED] wrote:
During the course of a vulnerability assessment one of the plug-ins (http://cgi.nessus.org/plugins/dump.php3?id=10898) returned a result indicating that many users had never changed their passwords. The results were the same when scanning both the domain controller and the backup domain controller (both NT 4).
The users swear they have been changing their passwords regularly.
I thought at first that the plug-in might be checking the local accounts, but the results are the same for the PDC and the BDC.
If they are in fact changing their passwords, what could be the cause of this result?
Any help is greatly appreciated.
Randy
________________________________________________________________
The best thing to hit the Internet in years - NetZero HiSpeed!
Surf the Web up to FIVE TIMES FASTER!
Only $14.95/ month -visit www.netzero.com to sign up today!
_______________________________________________
Nessus mailing list
[EMAIL PROTECTED]
http://mail.nessus.org/mailman/listinfo/nessus
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
