| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 39977 | 2003-11-23 23:46:00 | I need some advice | zqwerty (97) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 194274 | 2003-11-26 23:11:00 | Before I read the rest of this thread, seemingly as it's a bit long... I'll start from the start and work my way down. I believe you LAN is working peer to peer, Is it necessary for the password to be changed every 42 days? I know for security reasons this is necessary, but you don't seem to be running a server that stores all this so I assume it's working on a P2P basis. The reason you lose access is because of the password is changed, every computer needs to be able to know the new password or else the peer to peer connection with that user will be invalid, as they won't have rights to be able to access the machine. If the password never changes then it should be alright as long as it's been setup correctly and nothing else needs altering. Setting up a user with Admin rights is just the same as correctly setting up a normal user as long as the password is not altered, a person with admin rights means you wouldn't have to configure it as they are given full control of everything. If you believe the your network can be trusted, and that being on the internet 24/7 behind a linux firewall you'd be safe then go with that option, I'd still think properly configured users will be needed for added security is the best way, as trusting network users is not a good thing. |
Kame (312) | ||
| 194275 | 2003-11-27 00:55:00 | >I cannot find the location of the passwords to even look at them. OK W2k stores user information and encrypted versions of the passwords in a file called 'sam', usually hiding in \winnt\system32\config. This I know because recently I accidentally mistyped a new password or some such snafu on my laptop and couldn't access the administrator account any more. I found this password recovery site (home.eunet.no) but it was all a bit confusing. I searched PF1 and found Liam's post on the subject which used the file from the URL above. I had a few problems understanding the jargon but Liam helped me through, and I also rewrote the instructions to remove all the dross that I didn't need. Long and the short of it is, this boot disk will reveal all of the username/passwords on each computer and you can reset them to suit yourself, starting by setting as blank (no password) because apparently this is more reliable. It was easy to use once I got the hang of it, but it is a Linux based process and it was not exactly intuitive for an old DOS head. Liam sent me the files and brief instructions on how to prepare the floppy, so if you want those, post a suitable email address and I'll forward them on. Your biggest problem is the 24/7 operation because whatever you do will involve taking workstations off line for reconfiguration. They are going to have to give you some elbow room to sort this out, and the access constraints may explain why administrators have come and gone. At the very least they need one spare workstation plus a laptop for the administrator to work on so that network maintenance can be carried out in an orderly fashion. Incidentally, I assume this is a peer to peer network. Cheers Billy 8-{) |
Billy T (70) | ||
| 194276 | 2003-11-27 01:11:00 | As a side note to all this I once had a simple peer to peer network (only 2 computers) that sometimes would talk to each other, sometimes not. There didnt seem to be any logic to it. To solve it I removed all of the settings from the network connections eg tcpip, ipx, file and print sharing and started from scratch adding them one by one. This seemed to solve the problem and the 2 computers chatted happily ever after. B |
Barnabas (4562) | ||
| 194277 | 2003-11-27 01:14:00 | Sorry at work at the moment. The computers are connected using a fast ethernet LAN. | zqwerty (97) | ||
| 194278 | 2003-11-27 02:05:00 | But is it a peer to peer or client server setup? | mark.p (383) | ||
| 194279 | 2003-11-27 04:23:00 | Client server | zqwerty (97) | ||
| 194280 | 2003-11-27 12:05:00 | I had a look at the tools offered to recover lost passwords etc and it looks rather daunting. I have also been looking at tweak tools and some of them offer the same feature as TweakUI but call it a different name. I think this system has already been hacked using one of the password tools and that maybe why it behaves in unexpected ways. I am going to look into the problem from the Registry point of view using the tweak tools and maybe at Christmas time I will give it a go. Thankyou everyone who has contributed to this thread, I know a lot more now than when I started. Regards to you all, and don't forget it is coming to Christmas time. Love each other. |
zqwerty (97) | ||
| 194281 | 2003-11-27 19:34:00 | You may need to re-configure the network from scratch, to make sure it works properly. Maybe around Xmas time when the company closes down for the holidays (if it does), you could spend a couple of hours to do a proper job of setting up the network settings. | somebody (208) | ||
| 194282 | 2003-11-27 22:07:00 | Hmmmm . . . . . . Client server is a bit more complex then my peer to peer system, so I can't offer any help there . However, the password tools are a doddle to use once you know how, and I have simplified instructions so that it is basically make the floppy, insert in the computer, reboot then follow the bouncing ball . If lost/redundant passwords are an issue, you should try this, and the offer to forward the files and instructions via email stands . Just put up a temporary email address and stand back . Cheers Billy 8-{) |
Billy T (70) | ||
| 194283 | 2003-11-28 00:11:00 | If they are using a client server and using w2k server then a policy is in effect to change the passwords change the security policy to keep passwords, also the permissions for the printers are wrong and instead of being per user then you share and give permissions to the domain account "DOMAIN USERS" and the password issue dissapears. change the individual share points on the client PC's if they have any to the same domain users account and the issue dissapears as well. if you do not have a computer in there running either a linux server novell server, or NT4 or W2K server then you are not runing client server and only running peer to peer. |
Wayne H (1736) | ||
| 1 2 3 | |||||