Everhart,Glenn
From:	Luke Kenneth Casson Leighton [lkcl@REGENT.PUSH.NET]
Sent:	Thursday, April 30, 1998 8:46 AM
To:	NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
Subject:	Re: name of built-in administrator
doesn't make any odds: you can still use some of the other Samr
(\PIPE\samr over-the-wire) functions: do a QuickView on samsrv.dll to
list all functions supported. some of these will list the RIDs of all
known groups; some will return you the _users_ in a particular group.

these over-the-wire (internal, undocumented) functions are evoked by the
USRMGR.EXE program, which calls the (external, documented) functions like
those called by the sid2user and user2sid programs.

On Wed, 29 Apr 1998, Dom wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> I thought MS said to make a copy of admin and then rename it and
> disable it. I'm sure I'll get corrected if I'm wrong.
>
> Dom
>
> >Now, it happens that to use these function a user have just to be
> >EVERYONE. It means that an ordinary user can find without a problem a
> >built-in domain administrator name, which MS recommends us to rename
> >from administrator to something else (see for example, course 803,
> >Administrating Windows NT 4.0).
>
>
> -----BEGIN PGP SIGNATURE-----
> Version: PGP for Personal Privacy 5.0
> Charset: noconv
>
> iQA/AwUBNUclEzOtP3C97DopEQKgfwCbBvLz15guLT5T9gM2P79LMfd9vdgAn2pn
> FT2Pmtd9JNr4kvyDLffCqJ1r
> =5ZBP
> -----END PGP SIGNATURE-----