Thursday, May 26, 2011

Windows Security regarding Well Known SIDs


A relatively common security practice is to rename the built-in administrator accounts and groups so as to obscure them from potential attacks.  While this suggestion holds some merit regarding outside attacks, it does little to prevent even non-privileged users from discovering administrative accounts.