From: WatsonR@IntelligenCIA.com
"W C Hull" wrote in
message news:bNcvh.546$Xf4.270@trndny09...
> We have a request from Auditing to modify the password an a local
> workstation administrative account every 90 days. We are developing two
> programs - a VB6 GUI program that will allow the administrative support
> person to enter a new password into an App and have that encrypted
> password saved in a text file. The second part is a VB6 program that only
> is a command line program that will open the password text file, read the
> encrypted password, de-encript it using the same logic that created it,
> and then resets a specific local administrors account to the new password.
>
> We already have the program that will encrypt a clear text password and
> save that encrypted password to a file. We also have enough of the
> command line program written that will read the password file, de-encrypt
> the password stored in the file and then (for now only) will display the
> de-encrpted password on the screen.
>
> What I need to know is the remaining portion of code that will allow me to
> actually reset a specific local administrator's account to the new
> password. Note the code will be run using the machine's system account.
>
> Does anyone have the code they can share with me that will perform the
> password change? If so, please post the code in the reply.
>
> Thanks,
>
I would recommend strongly against using a file. What happens if a user
deletes the file?
Does the password revert back to the default? Any outcome would be a
security hole.
Use the registry and simply encrypt and decrypt appropriately. You can even
include
a time hash in which case a password of let's say "DOG" would be encoded
differently from
one PC to another.
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)
|
