|
Security Incidents
mailing list archives
Re: strange account in Win2k
From: Dan Cuthbert <dcuthbert () idsec co uk>
Date: Tue, 28 May 2002 17:59:25 +0100
Is this machine part of a Domain? if so that is normally the domain acc
* Mark Fagan (Mark.Fagan () esat com) Tapped away:
While setting additional privileges on a Win2k webserver I noticed that
certain privileges (logon as batch job, act as part of o/s, logon locally
and network) were applied to a very strange account -
*S-1-5-21-527237240-162531612-725345543-1008 which is not seen as a user
account. Any ideas folks ?
Mark Fagan
TDA
Esat Business
1 Grand Canal Quay
Dublin 2, Ireland.
E mark.fagan () esat com
www.esatbusiness.com
************************************************************************
This email and any files transmitted with it are confidential and intended
solely for the use of the individual or entity to whom they are addressed.
If you have received this email in error please notify the system manager.
http://www.esatbusiness.com
Subscribe to the Esat Business Online Magazine:
http://www.esatbusiness.com/news/subscribe.asp
Subscribe to REALISE - the online magazine from BT Ignite:
http://www.btignite.com/realise
************************************************************************
----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
Dan Cuthbert
Network Security Consultant
IdSec
Key fingerprint = 9BFB 60F1 1B46 F9F0 4E2C 84A6 8D04 E771 54A6 1116
----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
 By Date 
By Thread
Current thread:
| 
Intro
