Intruders Viewing User Account Names

  • Thread starter Thread starter Peter D
  • Start date Start date
P

Peter D

Is it possible for an intruder to view account names without actually
getting into the system (view them remotely)?
I am trying to decide how complex to make my administrative account user
names.
If they cannot view the list of account names, then it seems to make sense
to give them complex names so it would be hard to guess them.
If they can view the list of names, then it seems to make sense to give them
names that match our corporate employee naming structure to make it harder
to guess which ones might have elevated rights.
Thanks.

Peter
 
Peter D said:
Is it possible for an intruder to view account names without actually
getting into the system (view them remotely)?
I am trying to decide how complex to make my administrative account user
names.
If they cannot view the list of account names, then it seems to make sense
to give them complex names so it would be hard to guess them.
If they can view the list of names, then it seems to make sense to give them
names that match our corporate employee naming structure to make it harder
to guess which ones might have elevated rights.
Thanks.

Peter
Click to expand...

Yes and if the machine is visible to a network. There are tools which do
this. The tools are with built in dictionary attacks. Set your machine
policies and lock and tighten your accounts.

Regards,
Brian
 
Back
Top