L
Lucvdv
I have to change a common password on a number of machines (W2k and XP)
because it was compromised.
They are installed in groups of two or three at different locations, there
is no domain (workgroup setup).
I had foreseen an auto-update system: daily, the 'primary' machine at each
location wil contact a https server, and if an update is available it will
download and install it. The update installer that is downloaded as an EXE
is started under the local system account on that machine.
To change the passwords on all machines without having to go through
detecting computernames etc., I wanted to use SysInternals' pspasswd.exe:
This scans all machines in the local domain or workgroup, logs in to each
one of them in turn with username 'user1' and password 'pass1', and changes
the password of 'user2' to 'pass2'. 'User1' and 'user2' can even be the
same.
This works perfectly, as long as the program is launched from a 'real'
console window. When it is started under the local system account it
enumerates all computers and prints their names to stdout, but it only
changes the 'user2' password on the machine where the program is running.
Example output taken from stdout (blank lines omitted, program is running
on COMPUTERNAME3):
COMPUTERNAME1:
COMPUTERNAME2:
COMPUTERNAME3:
Password for COMPUTERNAME3\user2 successfully changed.
No error messages, apparently it doesn't even try to do anything on the
first two computers, just lists their names.
In a normal cmd window, the output would be something like this:
COMPUTERNAME1:
Password for COMPUTERNAME1\user2 successfully changed.
COMPUTERNAME2:
Error changing password:
The user name could not be found.
COMPUTERNAME3:
Password for COMPUTERNAME3\user2 successfully changed.
I've been trying to "log on" and impersonate user1 in the installer before
starting pspasswd, but it doesn't make any difference.
I tried LOGON32_LOGON_INTERACTIVE, LOGON32_LOGON_NEW_CREDENTIALS,
LOGON32_LOGON_NETWORK, LOGON32_LOGON_NETWORK_CLEARTEXT, all with the same
result: zip.
Does anyone have an idea what the program could be missing that makes it
skip over eveything except the local computer?
because it was compromised.
They are installed in groups of two or three at different locations, there
is no domain (workgroup setup).
I had foreseen an auto-update system: daily, the 'primary' machine at each
location wil contact a https server, and if an update is available it will
download and install it. The update installer that is downloaded as an EXE
is started under the local system account on that machine.
To change the passwords on all machines without having to go through
detecting computernames etc., I wanted to use SysInternals' pspasswd.exe:
This scans all machines in the local domain or workgroup, logs in to each
one of them in turn with username 'user1' and password 'pass1', and changes
the password of 'user2' to 'pass2'. 'User1' and 'user2' can even be the
same.
This works perfectly, as long as the program is launched from a 'real'
console window. When it is started under the local system account it
enumerates all computers and prints their names to stdout, but it only
changes the 'user2' password on the machine where the program is running.
Example output taken from stdout (blank lines omitted, program is running
on COMPUTERNAME3):
COMPUTERNAME1:
COMPUTERNAME2:
COMPUTERNAME3:
Password for COMPUTERNAME3\user2 successfully changed.
No error messages, apparently it doesn't even try to do anything on the
first two computers, just lists their names.
In a normal cmd window, the output would be something like this:
COMPUTERNAME1:
Password for COMPUTERNAME1\user2 successfully changed.
COMPUTERNAME2:
Error changing password:
The user name could not be found.
COMPUTERNAME3:
Password for COMPUTERNAME3\user2 successfully changed.
I've been trying to "log on" and impersonate user1 in the installer before
starting pspasswd, but it doesn't make any difference.
I tried LOGON32_LOGON_INTERACTIVE, LOGON32_LOGON_NEW_CREDENTIALS,
LOGON32_LOGON_NETWORK, LOGON32_LOGON_NETWORK_CLEARTEXT, all with the same
result: zip.
Does anyone have an idea what the program could be missing that makes it
skip over eveything except the local computer?