Why change Administrator account name

[Guest]

Can anyone give me some pros and cons to changing the Administrator account name? Is changing the Administrator account name a common practice for security reasons? Or is it not really necessary

Thanx for any input you can prvide

Vinny Hahn

 

[Jeff Cochran]

Can anyone give me some pros and cons to changing the Administrator account name?

Pros:

One more step for someone breaking in. They need to figure out the
account name *and* passowrd, not just the account name.

Cons:

Takes a minute or two out your life.

Is changing the Administrator account name a common practice for security reasons?

It should be

Or is it not really necessary?

Depends on how security conscious or paranoid you are. If you grant
every account domain admin rights, then changing the administrator
account name is silly.

Normally, you change the admin account to something else, JohnDoe for
example. You then create a new account named Administrator, with a 15
character random password, and configure auditing for that account.
That way you log simple hack attempts. Naturally the new account has
explicit deny rights for everything just in case. You also create
administrator equivalent accounts to use for normal admin functions.

Note that anyone enumerating the user base can easily identify the
admin account, but that's a step above the novice hacker or casual
attacker, and usually won't occur until after they've tried the
administrator account. Auditing is what tracks them.

Jeff

 

[Guest]

have a little more fun, rename the administrator account to guest, and the guest account to administrator. i mean..who the hell wants to hack the guest account, anyway?

 

[Guest]

Thanx Jeff, I appreciate your thoughts on this.

Vinny