Skip Navigation
Mizzou IT Home
Division of IT: Security

Make IT Safe: Secure Administrator Passwords

Important

Server Specifications

More info

Password Vulnerability Exposed in Windows XP/2000

How easy is it for someone to actually hack into your computer? If you are running Windows XP or 2000 and haven't taken the right precautions, such as choosing an administrative password, it can be relatively easy.

A common method of intrusion includes scanning for computers that do not have administrator passwords and are connected to an always-on, high-speed network such as Mizzou TigerNet.

Although Microsoft Windows XP and 2000 might look similar to Windows 95 or 98, it is quite different from a security standpoint.

The Windows XP and 2000 Difference

Windows XP and 2000 contain more complex services that can be exploited by someone wanting to do harm to your computer. Windows XP and 2000 offer "Server" and additional services through the default installation. Anybody who knows the administrator account password can contact these services through the network and obtain access to the machine.

Windows XP and 2000 hacks can occur due to no password or a weak administrator password. Anyone who wants to cause harm can scan for administrative passwords, reach the computer, and as a result, log into your personal folders and files.

Creating an administrator password will increase your privacy and protection against any user who uses your computer.

It is highly recommended that you contact your technical-support provider (commercial or departmental IT professional) for assistance.

Setting an Administrator Password in Windows XP

  • Go to the Start menu and select Control Panel.
  • Click on Switch to Classic View located in the top-left corner.
  • Select Administrative Tools.
  • From the left-hand window, choose Computer Management, then open Local Users and Groups.
  • From the right-hand window, right-click on Administrator (or whatever ID functions as Administrator) and select Set Password.

Setting an Administrator Password in Windows 2000

  • Under the Start menu, go to Settings and select Control Panel.
  • Select Administrative Tools.
  • Choose Computer Management.
  • Under Local Users and Groups, select Users.
  • Right-click on Administrator (or whatever ID functions as Administrator) and choose Set Password.

If some element of the instructions is missing, contact your technical-support provider as soon as possible.

It's Your Responsibility

If your computer is broken into, an intruder may delete or destroy important data, look at personal files or even take control of your computer and use it to perform illegal activities, implicating you as the guilty party. It's your responsibility to choose and set a good password.

University security personnel have detected frequent, systematic probes for weak passwords. If you have a weak password, the question is not so much if it will be exploited, but if it has already been exploited. If access to your computer has been compromised, first correct the problem. Then check for signs that intruders have already exploited your system, perhaps planted additional "back doors" that would persist even if you reset all passwords. If in doubt, e-mail isam@missouri.edu. ISAM can perform external and discreet internal security reviews of your computer.

For more information, or if you need assistance in setting up your administrator password, call the Help Desk at (573)882-5000.
University of Missouri
Division of Information Technology
615 Locust Street, Columbia, MO 65211
(573)882-2000
Copyright ©2007 Curators of the University of Missouri.
DMCA and other copyright information.
An equal opportunity/affirmative action institution.
Revised July 29, 2008