Since this subject was brought up, I have a question concerning cached passwords. If the security policy is caching passwords for the last 10 users and a domain admin or administrator of the domain logs in can that password be compromised from that local pc? Can a local admin of the machine get that password from the local password cache/sam and crack it?
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Adam Smith Sent: Wednesday, January 22, 2003 6:27 PM To: NT 2000 Discussions Subject: RE: OT Local Admin rights for developers > Our development team refuse to work with our policy on > purchasing and support of new desktop computers. I have similar problems here, however most of our developers are cooperative. If a developer is using a computer system owned by the company, I will step in and make sure it is on the domain. The problem here is that many of our developers have purchased their own laptops with a salary allowance. It's the way this place runs. Everyone uses laptops because our techs and developers are going on-site to fix problems or to commission the systems we put in place. It's a handful of our software developers that are stubborn about being members of the domain, because they are so anal about controlling their systems, or stopping other people (like myself) from accessing them, that they will simply remove their computer from the domain, and access its resources from outside. > They have full local admin rights and have run > applications on the systems without consideration to other > users on the subnet. Developers do need more access to their systems than otherwise would be normal, but if you enforce company policy that employees must be members of the network domain, you are able to overrule their personal judgement. If they argue about it, explain that it is company policy. If they breach that, they are going against company policy and should be dealt with. I'm not saying you should turn into the Bastard Operator from Hell, but if you want your network to run smoothly, draft a policy, get it approved, and make your company stick to the policy. > If any of your have experience of this problem or have some > observations I would really appreciate your advice. Developers are a nightmare. -- Adam Smith Information Technology Officer SAGE Automation Ltd. [EMAIL PROTECTED] http://www.sageautomation.com ------ You are subscribed as [EMAIL PROTECTED] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to %%email.unsub%% ------ You are subscribed as [email protected] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to [EMAIL PROTECTED]
