Penetration Testing: RE: RE: AD password Auditing

["Beauford, Jason" <jbeauford () EightInOnePet com>]

I'm surprised this thread got so far without a single person realizing
this fact.

Actually, there is the "hidden" Sam DB for AD Restore (You set this
password when you run DCPROMO), but as far as Local User Accounts go,
the comment below is absolutely correct. 

-JMB

-----Original Message-----
From: gcehrh () securityfocus com [mailto:gcehrh () securityfocus com] 
Sent: Thursday, August 11, 2005 8:49 AM
To: pen-test () securityfocus com
Subject: Re: RE: AD password Auditing

If you're running Active Directory a Domain Controller doesn't have any
local accounts.

------------------------------------------------------------------------
------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You
Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
------------------------------------------------------------------------
-------



------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------