Thread: Scheduled Tasks and passwords
View Single Post
  #9  
Old September 27th 09, 01:41 AM posted to microsoft.public.windowsxp.help_and_support
Jose
external usenet poster
  
Posts: 3,140
Default Scheduled Tasks and passwords
On Sep 26, 4:51*pm, wrote:
On Sat, 26 Sep 2009 10:04:37 -0700 (PDT)

Jose wrote:
Sounds like it is working fine.

You can create a new account with a PW just for STs.

You can assign your account a PW and use it, and still have the system
to log you in automatically when XP starts (convenient).

This is why you may want to test your mechanism by assigning yourself
a PW temporarily and get the command task to run and open a command
window, then work on your new task.

Set up a second user account with admin privileges and the command
prompt task ran fine. *As did the defragger I wanted to schedule. *The
MSE task has a syntax error that I'm researching.

Then I came across a registry hack to turn the password-required
feature off with Scheduled Tasks, as follows:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\Lsa
Value name: limitblankpassworduse, Type: REG_DWORD, Data: 0 (disabled)
1 (enabled)

Is there any downside to disabling it, assuming an assortment of
anti-malware programs? One thing I notice after disabling it
(in non-password account) is that when the defragger runs, it runs
entirely in the background, no interface onscreen, unlike the password
account (and normally). *Does that seem right? *Thanks,

Gene

This is not in my list, but sounds interesting, but also threatening -
here's why from a Google search:

http://www.derkeiler.com/Newsgroups/...4-08/2498.html

There are other results that read to the effect that it opens a wide
hole in your security where a remote user/malware, FTP sites, Telnet,
Terminal Services, etc. may connect to your machine over the Internet
- they don't need a password either! Microsoft documentation doesn't
even want to talk about it. So why is it there?!

Even the NT_AUTHORITY method has a little eeeew factor to it, but it
is okay for me here and sometimes people don't go for the more
sensible options and insist on no passwords. I think there is some
other way that is more convoluted, so I don't even have it in my notes
- too messy. I would rather try to think of ways to do things without
circumventing security.

I don't use STs or JKdefrag, but that product has a WWW page and about
halfway down they talk about using a ST:

http://kessels.biz/JkDefrag/

Good find though - I know more now than I did.
Ads