microsoft.public.windowsxp.security_admin
back to index
From: "ju.c"
Date: Monday, April 07, 2008 2:10 AM
Subject: Re: Password for Guest Account
Description of the Guest account in Windows XP
http://support.microsoft.com/kb/300489
Windows XP Baseline Security Checklists
http://www.microsoft.com/technet/archive/security/chklist/xpcl.mspx?mfr=true
From Windows XP Baseline Security Checklists:
----------------------------------------------------------
Make sure the Guest Account is Disabled
This setting recommendation applies only to Windows XP
Professional computers that belong to a domain or to
computers that do not use the Simple File Sharing model.
On Windows XP Professional systems that are not connected
to a domain, users who attempt to log on from across the
network will be forced to use the Guest account by default.
This change is designed to prevent hackers attempting to
access a system across the Internet from logging on by
using a local Administrator account that has no password.
To use this feature, which is part of the Simple File
Sharing model, the Guest account must be enabled on all
Windows XP computers that are not joined to a domain. For
those computers that are joined to a domain, or for
unjoined computers that have turned off the Simple File
Sharing model, the Guest account should be disabled. This
will prevent users attempting to log on to the computer
from across the network from using the Guest account.
----------------------------------------------------------
ju.c
"Allan"
news:eXkwSaEmIHA.3780@TK2MSFTNGP06.phx.gbl...
>
> "Allan"
> news:ehOn2JEmIHA.4480@TK2MSFTNGP03.phx.gbl...
>>
>> "ju.c"
>> news:O8c0Zx7lIHA.3400@TK2MSFTNGP03.phx.gbl...
>>> From:
>>> http://www.petri.co.il/disable_the_guest_account_in_windows_xp.htm
>>>
>>> If you turn off the Guest Account you don't turn really turn off
>>> the Guest Account at all. All you did is to turn off is the "Guest
>>> Account" icon on the Welcome screen. That's all. So people who
>>> walk up to the computer in question can't click Guest Account
>>> and immediately start using the computer. Even if you've
>>> followed the instructions and turned off the Guest Account,
>>> people who connect to the computer over the peer-to-peer
>>> network are still authenticated as Guests.
> Sorry "ju.c" I meant to say that according to the article if it is XP
> HE (non-networked) there is no reason not to disable the Guest
> account. Or if it is XP Pro in a domain again this concern does not
> apply. I agree that if it is XP HE, or XP Pro in a non-domain network,
> disabling the Guest account is not indicated.
>
> --
> Allan
>
