Internal security-hole in Windows 2000/XP – Local Administrators-group:
Did You know, that You - probably - from Your own computer, can open Your colleagues computer with Explorer, without Your colleague can see, that it happens?
And that You - if it works - gains total admin-power with all documents/files on Your colleagues hard disk ?
Your company has this security-hole in Windows 2000/XP, if You can install programs on Your Windows 2000/XP computer, when You are logged on Your company’s network!
W2kLocalAdminGroup grants You many different ways to administrate who can/can’t be a member of the LocalAdminGroup, and who should be deleted. And You get reports, stating how this program secures Your installation.
When You input Your choices in the program, then You only need 1 line in the loginscript to all Your users. This will assure, that Your choices are added to the LocalAdminGroup on all Your computers, where the loginscript did run.