|
Posted by Ondrej Sevecek on January 11, 2006, 6:26 am
Please log in for more thread options one more note: even running under the local system account on a computer
that is joined to domain the application can access network, but will always
be only member of "Domain Computers" group there, so only a "Authenticates
Users" group rights will be applied.
O.
show/hide quoted text
"Ondrej Sevecek" <ondra at my_surname dot com> wrote in message
> there is quite no difference between local system account and local
> administrator account from the security point of view.
> Only be sure to have the local admin's password different from other
> computers or rename the account. This is because running under the user
> account the application can access network under its identity as long as
> it has the same name and password as some other user on the network
> (either local on different computer or a domain user).
> O.
>> Can anybody help me with the following problem:
>> I have a Web-Server in a DMZ. It runs a web Service for a 3rd party web
>> application. For this application to function properly, it is required
>> to run this server with an account that is in the local administrators
>> group on this server instead of the local system account.
>> Can someone tell me something about the security risks that we take whe
>> the service is started with a local admin account?
>> Thanks in advance and best Regards
>> Pascal
>
| 
XML Sitemap
> I have a Web-Server in a DMZ. It runs a web Service for a 3rd party web
> application. For this application to function properly, it is required
> to run this server with an account that is in the local administrators
> group on this server instead of the local system account.
> Can someone tell me something about the security risks that we take whe
> the service is started with a local admin account?
> Thanks in advance and best Regards
> Pascal
>