No administrator password, serious consequences

Few people may have noticed this. The system has internal and user-created accounts. take WinXP as an example. During system installation, the installer creates two accounts, Administrator and Guest. The previous account has the maximum permissions and is enabled by default; the latter has only the most basic permissions and is disabled by default. it is very different from Win2000, that is, you can create an account on the welcome screen displayed during the first running of WinXP, therefore, many people will forget the Administrator account created by the installation program during system installation after creating their daily account on the welcome screen. this is a big security risk. because this account has a lot of permissions and requires a password during the installation process, many people do not realize this and may not set a password for this account, or set some weak passwords. the consequences of this problem may be very serious. Even if your computer is installed with security software, such a machine is completely undefended by hackers.

Tip: If someone else uses the Administrator account to enter the system, the most direct way is to log on to the system locally. although the Administrator account is not displayed on the WinXP welcome screen, the Login Dialog Box is displayed as long as you press Ctrl + Alt + Del twice in a row on the welcome screen, you can log on to the system and obtain all permissions by entering the Adminstrator and the corresponding password (usually no password required.

Maybe you can lock your computer in the office, but if the computer is connected to the LAN, there are still many "backdoors" that can be drilled through the network. taking Windows XP Professional as an example, the operating system supports network management. Therefore, if your Adminstrator account does not have a password set or the password strength is insufficient, others can connect to your computer through the LAN and perform various operations.

For example, Run "Regedit.exe" on your machine to open the Registry Editor, and click "Connect Network Registry" under the "file" menu of the Registry Editor, you will see a dialog box, enter the name of the target computer, and click OK. In the dialog box that appears, enter a user name (such as Administrator) and password with Administrator permissions, the Registry of the other computer is completely exposed to you. You can view or edit any content in it!

Countermeasures:

1. set a strong password for The Adminstrator account to prevent others from guessing the password: Enter "lusrmgr. msc and press enter to open the local user and group management unit, click the "user" node on the left side of the window, right-click the account Administrator on the right side of the window, select "set password ". in the dialog box that appears later, enter a strong password (the password has a long number of digits and is the best combination of uppercase and lowercase letters ). pay attention to the warning dialog box popped up before setting the password to ensure that your operation will not cause any loss.

2. rename the Administrator account to make it difficult for malicious visitors: Enter "gpedit. msc "and press enter to open the Group Policy Editor. In the left-side pane of the window, choose computer Settings> Windows Settings> Security Settings> Local Policies> Security Options ", double-click the policy "account: Rename System Administrator Account" on the right panel, and enter a new name for the Administrator account in the subsequent Settings dialog box. note: When selecting a name, try to avoid using "Admin", "Root", "Guanliyuan" and other words. In short, the more uncommon the name is, the better it is.

At the same time, pay attention to the following: it is best to log on with a general-permission account when using a computer. You can only use an account with administrator permissions when you need to change the system settings, in this way, even if the file you run carries a virus, the system cannot be infected or spread due to insufficient permissions.