A relatively common security practice is to rename the built-in administrator accounts and groups so as to obscure them from potential attacks. While this suggestion holds some merit regarding outside attacks, it does little to prevent even non-privileged users from discovering administrative accounts.