• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Win2K - Can you create a hidden admin account?

R

RyboFlavin

Member
I currently have administrative rights on my PC at work, but they are going to be taking them away tomorrow due to a corporate wide policy. Is there any way to create a hidden account so that I can reenable my admin rights after they make the changes? Is there anything else that I can do to help me "maintain" my rights? Please do not flame me for this, but I don't like this bull "big brother" crap that they are trying to pull here at work right now.
 
Nope, and even if you could you'd probably get fired for doing such a thing.

You don't own that PC, your employer does. If they don't want you being a local admin they're 100% in their rights and I 100% agree with them. If there's a valid reason for you to have them fine, but to have them 'just because' is dumb and will only cause problems.
 
/nod Nothinman

The fact that you think you could possibly get away with something like this indicates to me that you don't need admin priviliges to begin with. Enjoy calling IT when you need things like Winzip installed.................
 

Like others have said, NO.

I'm sure you will get use to not download junks & compromises the company network.

Just think of it as a job security measure, because you might get caught unknowingly install virus and end up with a pink slip.

Here at the company the only people that have admin privilege is my admin_profile not even the company owner have the right to install on their computer. There is on other backup admin_profile that is never in use, with the user_name & pass_word is seal in an envelope & locked in the boss safe.
 
Actually I am a programmer IN our IT department and the restrictions they are going to be putting in place won't even allow me to install programs that I have written for my job...I would have to call the help desk to install them. My company just hired a new IT manager and he won't give access to anyone and it is going to affect job performance. All I want is the ability to install the frickin' programs that I write and other programs that are necessary to my job...without calling the damn help desk. Since I am part of our IT department I have always had Admin rights because I NEVER call the help desk. I worked in their position years ago and advanced in the company since my experience, certifications, and college degrees have warranted such promotions. Most of my experience is with Novell, so I wanted to ask here if there was a way that I can keep some of my current privledges. Maybe all I need is Power User rights, but that is beside the point.

Obviously, you guys are very moral individuals and you feel the need to scold others...fine! A simple, "Yes it is possible." or "No it isn't" would have been enough. If I wanted to hear a lecture on why I shouldn't do this then I would have asked my boss the question from my original post.
 
There are several things you could do if you have admin rights now that would ensure you could get admin rights later. If you're a programmer, it shouldn't take too much thinking to come up with one of these methods.

However, while I can think of a few methods off the top of my head, I don't believe it would be ethical to post them here.

Yes, it can certainly be done, however. It just takes a little thinking and a little effort.
 
Why don't you fellas post your "several ways to do it" so I can try to prove that they won't work?

It really doesnt have anything to do with ethics, it's just business. Making sure users can't mess up thier boxes makes business sense. It's cheaper in the long run.
 
Will your PC be reimaged or just your ACLs revoked?

If reimage (which would be the proper IT security thing to do), you are SOL, since any changes you make will be nuked.

If your ACLs are revoked, then you can "leave" a few things *ahem* running as services/scheduled tasks. But you are treading on "viral" activities.

Then of course, more obvious ways would be to use one of many buffer overflows in NT to gain admin privs, assuming you can 1) find the sploits or 2) make your own based on CERT data.
 
Originally posted by: Saltin
Why don't you fellas post your "several ways to do it" so I can try to prove that they won't work?
It really doesnt have anything to do with ethics, it's just business. Making sure users can't mess up thier boxes makes business sense. It's cheaper in the long run.
Click to expand...

Actually Saltin there are a number of things he can do *since he is already admin*. These would be akin to leaving back doors on the system so he can easily elevate his privledges. I won't go into details (email me (Saltin) if you want). This isn't the same as someone being a normal user and thinking they can escalate, he would already pre-position things as admin so he could.

That said, the original poster probably should start looking for another job, one where he respects the company and their property. One he doesn't call 'big brother' for protecting property that they, not himself own.

Bill


 
Then of course, more obvious ways would be to use one of many buffer overflows in NT to gain admin privs, assuming you can 1) find the sploits or 2) make your own based on CERT data.
Click to expand...

Now thats a stretch, most of these have been patched for eons.
Bill


 
You must log in or register to reply here.

TRENDING THREADS

Back
Top