[ISN] Changing Passwords En Masse -- December 7, 2005

From: InfoSec News (isn@private)
Date: Thu Dec 08 2005 - 07:04:43 PST


====================

This email newsletter comes to you free and is supported by the 
following advertisers, which offer products and services in which 
you might be interested. Please take a moment to visit these 
advertisers' Web sites and show your support for Security UPDATE. 

Quest Software
   http://list.windowsitpro.com/t?ctl=1B510:4FB69  

Postini
   http://list.windowsitpro.com/t?ctl=1B502:4FB69

====================

1. In Focus: Changing Passwords En Masse 

2. Security News and Features
   - Recent Security Vulnerabilities
   - Microsoft Restructures Security Solutions Competency
   - HP Boosts OpenView with Federated Identities
   - Sunbelt Shines New Light into Kerio Personal Firewall

3. Security Toolkit
   - Security Matters Blog
   - FAQ
   - Security Forum Featured Thread

4. New and Improved
   - Intrusion Detection for 100Mbps Networks

====================

==== Sponsor: Quest Software ====

"Get to One" system with help from Quest Software
   Streamline processes and increase security with tips from our new 
white paper. For most organizations, heterogeneous enterprises are a 
fact of life, but they present significant management and security 
challenges. Fortunately, Quest Software's Vintela products can help. 
Through natively implementing standards on non-Windows systems, those 
systems can participate as "full citizens" in the world of Microsoft 
infrastructure and management technologies.
   Learn how with info from, "Get to One: Integrating Heterogeneous 
Systems for Security and Management." This paper explains how an 
integrated architecture can streamline processes, save money, reduce 
complexity, increase security and enable compliance for Windows, Unix, 
Linux, Java and Mac systems. 
   "Get to One" solution for identity management, systems management 
and systems monitoring. Download the white paper today:
   http://list.windowsitpro.com/t?ctl=1B510:4FB69  

====================

==== 1. In Focus: Changing Passwords En Masse
   by Mark Joseph Edwards, News Editor, mark at ntsecurity / net

A few weeks ago, I wrote about tools you can use to test password 
strength and to recover unknown passwords. If you missed "Password 
Cracking Made Easy," you can read it on our Web site.
   http://list.windowsitpro.com/t?ctl=1B50C:4FB69

I want to follow up with a discussion of how to change passwords across 
all systems on your network. The most common instance of a password 
that you might want to change on any number of systems is the local 
Administrator account password. Changing this password regularly is 
probably a wise idea because doing so helps prevent unwanted access to 
systems. 

Some administrators don't care what the local Administrator account 
password is as long as nonadministrative employees don't know it. These 
admins prefer to generate a random password for each system. Other 
admins do want to know what the passwords are in case they need them 
for whatever reason. In either case, there are plenty of ways to change 
passwords across the board. 

If you have Microsoft Systems Management Server (SMS) you could use a 
simple, one-line installer program code such as 

Execute %SYS32%\net.exe user administrator <password> 

in which <password> is the actual password. Another solution is to use 
a script, probably written in Visual Basic (VB). Several sample scripts 
are available on the Internet.

If you have relatively few systems and can readily create a list of 
those systems, you could try using the script posted at Spoogenet, at 
the first URL below. Or try the script posted at Sadikhov.com, at the 
second URL below. Or use Chwinpw (at the third URL below), a command-
line tool from ITeF!x that can be integrated into a batch file or 
script. 
   http://list.windowsitpro.com/t?ctl=1B50B:4FB69
   http://list.windowsitpro.com/t?ctl=1B4FB:4FB69
   http://list.windowsitpro.com/t?ctl=1B519:4FB69

If you have Active Directory (AD), you can use AD objects and a script 
to gain access to a list of all computers. Such a script can also be 
used to change the local Administrator password for all your computers. 
Check out the sample script posted at ScriptingAnswers.com, at the URL 
below. It's short, simple, and relatively easy to understand if you're 
familiar with VB or other programming languages. 
   http://list.windowsitpro.com/t?ctl=1B4FD:4FB69

If you don't want to use a script and prefer a regular desktop 
application to do the work for you, there are probably a large number 
of choices, especially for enterprise networks. But if you manage a 
relatively small network and want a solution that doesn't carry an 
enterprise-class price, you could try Hyena from AMTSoftware 
International at the first URL below, which starts at $199. Or you 
might try DC PasswordChanger (DCPC), at the second URL below, which is 
free from Danish Company. 
   http://list.windowsitpro.com/t?ctl=1B518:4FB69
   http://list.windowsitpro.com/t?ctl=1B501:4FB69

If none of these solutions fit your needs, you can scour the Internet 
for something different. Try using your favorite search engine to look 
for phrases such as "change admin passwords," "change local admin 
passwords," "admin passwords" + "Active directory," and you'll find 
numerous discussions in which people have shared their insights.

But before you do that, you might want to check the Windows IT Pro 
Magazine Web site to see what we've published about this topic. Use our 
search engine with the above phrases. The link below will take you 
directly to the search results for the phrase "change local 
administrator passwords."
   http://list.windowsitpro.com/t?ctl=1B51B:4FB69"

====================

==== Sponsor: Postini ====

Protect and Manage Instant Messaging
   85% of businesses use IM for business or personal use to improve 
communication and reduce email usage. In this free white paper learn 
how to protect your company and implement a managed IM security 
solution!  
   http://list.windowsitpro.com/t?ctl=1B502:4FB69

====================

==== 2. Security News and Features ====

Recent Security Vulnerabilities
   If you subscribe to this newsletter, you also receive Security 
Alerts, which inform you about recently discovered security 
vulnerabilities. You can also find information about these 
discoveries at
   http://list.windowsitpro.com/t?ctl=1B506:4FB69

Microsoft Restructures Security Solutions Competency
   Microsoft made changes to its Microsoft Partner Program to include 
third-party validation of security credentials for Security Solutions 
Competency compliance. The company also added two new specializations 
to the program.
   http://list.windowsitpro.com/t?ctl=1B511:4FB69

HP Boosts OpenView with Federated Identities
   HP announced that it will buy Trustgenix, maker of identity 
federation solutions. Terms of the acquisition weren't announced, 
however HP said it will integrate Trustgenix federated identity 
solutions into its OpenView management software.
   http://list.windowsitpro.com/t?ctl=1B50E:4FB69

Sunbelt Shines New Light into Kerio Personal Firewall
   Kerio Personal Firewall was scheduled for mothballs on December 31. 
Then Sunbelt Software stepped in to buy the solution from Kerio 
Technologies. The deal is expected to close by the end of the year.
   http://list.windowsitpro.com/t?ctl=1B50D:4FB69

====================

==== Resources and Events ====

Web Seminar--Plan and Implement Highly Available Exchange Systems
   Register today: 
   http://list.windowsitpro.com/t?ctl=1B504:4FB69

Web Seminar--Manage and Reduce Planned Downtime
   Register today: 
   http://list.windowsitpro.com/t?ctl=1B505:4FB69

SOXCon 2005--December 7, 2005--12:00 to 5:00 p.m. EST
   THE FIRST AND ONLY Internet conference and vendor exhibition focused 
exclusively on the systems, processes, management methodologies, and 
best practices that comprise the Sarbanes-Oxley Compliance Management 
market. Register here and view the full day's agenda. Sign up today at
   http://list.windowsitpro.com/t?ctl=1B500:4FB69

Microsoft Exchange & Windows Connections 2006
   April 9-12, 2006, Orlando, Florida. Microsoft and Windows IT Pro 
magazine team up to produce the essential conference for systems 
administrators and IT managers in Windows and Exchange technology. 
Register by January 9 and receive one FREE hotel night at the Walt 
Disney World Swan Resort. Call 800-438-6720 for details.
   http://list.windowsitpro.com/t?ctl=1B517:4FB69

Web Seminar--Get the Tools, Tips, and Training That You Need to Avoid a 
Messaging Meltdown When an Outage Strikes
   Register today at 
   http://list.windowsitpro.com/t?ctl=1B503:4FB69

====================

==== Featured White Paper ====

Download a White Paper--You Could Win an iPod Nano
   Get your free copy today at http://list.windowsitpro.com/t?ctl=1B515:4FB69

====================

==== Hot Release ====

Filtering the Spectrum of Internet Threats: Defending Against 
Inappropriate Content, Spyware, IM, and P2P at the Perimeter 
   Because of the proliferation of Web-based threats, you can no longer 
rely on basic firewalls as your sole network protection. Attackers 
continue to evolve clever methods for reaching victims, such as sending 
crafty Web links through Instant Messaging (IM) clients or email, or by 
simply linking to other Web sites that your employees might surf. This 
free white paper examines the threats of allowing unwanted or offensive 
content into your network and describes the technologies and 
methodologies to combat these types of threats. Get your free copy now!
   http://list.windowsitpro.com/t?ctl=1B4FF:4FB69

====================

==== 3. Security Toolkit ==== 

Security Matters Blog: Chain Reactions of Bad Advice
   by Mark Joseph Edwards, http://list.windowsitpro.com/t?ctl=1B514:4FB69

One person creates a script to help secure Windows. Another person 
thinks it's a replacement for personal firewalls. Then another person 
agrees with him and a chain reaction of very bad advice ensues. Read 
all about it in this blog article. 
   http://list.windowsitpro.com/t?ctl=1B512:4FB69

FAQ
   by John Savill, http://list.windowsitpro.com/t?ctl=1B513:4FB69 

Q: How can I check the health of my Group Policy Objects (GPOs) in 
Windows Server 2003?  

Find the answer at
   http://list.windowsitpro.com/t?ctl=1B50F:4FB69

Security Forum: Antivirus Solutions
   A forum participant runs a network that consists of the main site 
plus eight remote sites. All the remote locations connect to the main 
site via T1 circuits and route through the main site's network out to 
the Internet for Web and email. The company doesn't have an in-house 
email server. The forum participant wonders whether anyone can 
recommend an antivirus solution to protect the entire enterprise, which 
includes about 107 employees. Join the discussion at:
   http://list.windowsitpro.com/t?ctl=1B4FE:4FB69

====================

==== Announcements ====
   (from Windows IT Pro and its partners)

Want to Become a VIP Subscriber?
   Become a VIP subscriber and get continuous, inside access to ALL of 
the online resources published in Windows IT Pro, SQL Server Magazine, 
and the Exchange and Outlook Administrator, Windows Scripting 
Solutions, and Windows IT Security newsletters--that's more than 26,000 
articles at your fingertips. You'll also get a valuable one-year print 
subscription to Windows IT Pro and two VIP CDs (CDs include the entire 
article database on CD, delivered twice per year). Don't miss out ... 
sign up now:
   http://list.windowsitpro.com/t?ctl=1B509:4FB69 

Windows Scripting Solutions--Holiday Special
   The Windows Scripting Solutions newsletter is a "must have." 
Subscribe today and SAVE up to $30 off the regular price. You'll get 12 
helpful issues loaded with expert-reviewed downloadable code and 
scripting techniques, as well as hundreds of tips on automating 
repetitive tasks. In addition, you'll get access to the entire online 
newsletter archive (more than 500 scripting articles), including the 
popular "Shell Scripting 101" series. This resource will help to save 
you time and money. Order now:
   http://list.windowsitpro.com/t?ctl=1B507:4FB69 

====================

==== 4. New and Improved ====
   by Renee Munshi, products@private

Intrusion Detection for 100Mbps Networks
   Arxceo announced a new addition to its line of network security 
appliances, Ally ip100, which provides antireconnaissance and anomaly- 
and behavior-based attack detection and prevention for 100Mbps 
networks. It's designed for perimeter protection and enterprise 
100BaseT segments, such as 802.11a/b/g wireless networks or T1/DS1 
remote offices. Ally ip100 runs on embedded Linux 2.6.11 and provides a 
Web-based interface for administrative tasks. Pop-up alerts are 
provided via SNMP and a Windows-based client application. Ally ip100's 
retail price is $895. For more information, go to
   http://list.windowsitpro.com/t?ctl=1B51A:4FB69

Tell Us About a Hot Product and Get a T-Shirt!
   Have you used a product that changed your IT experience by saving 
you time or easing your daily burden? Tell us about the product, and 
we'll send you a T-shirt if we write about the product in a future 
Windows IT Pro What's Hot column. Send your product suggestions with 
information about how the product has helped you to 
   whatshot@private

Editor's note: Share Your Security Discoveries and Get $100
   Share your security-related discoveries, comments, or problems and 
solutions in the Windows IT Security print newsletter's Reader to 
Reader column. Email your contributions (500 words or less) to 
r2rwinitsec@private If we print your submission, you'll 
get $100. We edit submissions for style, grammar, and length.

====================

==== Contact Us ==== 

About the newsletter -- letters@private
About technical questions -- http://list.windowsitpro.com/t?ctl=1B516:4FB69
About product news -- products@private
About your subscription -- windowsitproupdate@private
About sponsoring Security UPDATE -- salesopps@private

====================

This email newsletter is brought to you by Windows IT Security, 
the leading publication for IT professionals securing the Windows 
enterprise from external intruders and controlling access for 
internal users. Subscribe today.
   http://list.windowsitpro.com/t?ctl=1B50A:4FB69

View the Windows IT Pro privacy policy at
   http://www.windowsitpro.com/AboutUs/Index.cfm?action=privacy

Windows IT Pro, a division of Penton Media, Inc.
221 East 29th Street, Loveland, CO 80538
Attention: Customer Service Department

Copyright 2005, Penton Media, Inc. All rights reserved.



_________________________________________
Earn your Master's degree in Information Security ONLINE
www.msia.norwich.edu/csi
Study IA management practices and the latest infosec issues.
Norwich University is an NSA Center of Excellence.



This archive was generated by hypermail 2.1.3 : Thu Dec 08 2005 - 07:33:22 PST