Week 2 - Users and Groups

Question 1

Different between standard user, admin, groups?

Answer 1

standard user: limited access, can’t install software or change certain settings
admin: complete control, can view every file and account
groups: users grouped by access level

Question 2

What application do you use to view user and group information? W

Answer 2

Computer management

Question 3

What’s a Windows domain? What’s included?

Answer 3

a network of computers, users, and files that are configured on a central database

Question 4

What does UAC stand for? What does it do?

Answer 4

User Access Control

It prevents unauthorized changes to a system

Question 5

Do you have to be logged in all the time as an administrator? What makes this possible?

Answer 5

No, don’t have to be logged in as Admin can be logged in on your acccount

UAC helps make this possible

Question 6

What command lets you quickly see a list of users on the computer?w

Answer 6

Get-LocalUser

(useful to check if admin is turned on for that computer)

Question 7

What command lets you quickly see a list of groups on the computer? w

Answer 7

Get-LocalGroup

Question 8

What windows command lets you see who is in a certain group?

Answer 8

Get-LocalGroupMember (group name)

Question 9

What are the 3 windows commands to see user and group permissions?

Answer 9

1. Get-LocalUser
2. Get-LocalGroup
3. Get-LocalGroupMember (group name)

Question 10

What is a root user in Linux?

Answer 10

A root user is the first default superuser that is created when an OS is installed

Question 11

Why is always being logged into an admin or root account dangerous?

Answer 11

There are many important files that could be accidentally deleted or modified

Question 12

What does sudo mean? l

Answer 12

sudo means superuser do

Question 13

Where in a command do you place sudo?l

Answer 13

at the front

sudo cat /home/users

Question 14

When would you have to use sudo?l

Answer 14

When you want to access a root-restricted file

Question 15

What does su mean? L

Answer 15

substitute user

Question 16

What’s the function of su? What happens when you use it? L

Answer 16

this changes you to a different user, if none is specified then it goes to root by default

Question 17

How do you view memberships for all groups in Linux? Find out who can access run sudo?

Answer 17

cat /etc/group

Question 18

What are the 4 fields when viewing memberships for groups on Linux?

Answer 18

1. group name
2. group password
3. group ID
4. users in the group

Question 19

What’s the file path of the location of the file that contains user information (local)? linux

Answer 19

cat /etc/passwd

Question 20

How do you tell Bash you want to run a command as root? 2

Trying to run /etc/sudoers but permission error

Answer 20

sudo /etc/sudoers
or
sudo su - (changes you to the substitute default root user) then run the command again

Question 21

Since computers don’t identify a group or user by its name, how does it identify them?

Answer 21

Group or User IDs (UID)

Question 22

How do you view a root-restricted file?

Answer 22

sudo cat /file/location

or

sudo su -
then cat filelocation

Question 23

How would you use the substitute user command to run a root-restricted file?

Answer 23

sudo su -

then run the restricted file command again

Question 24

What is root’s UID?

Answer 24

0

Question 25

Why do so many users pop up when we use /etc/password to view users on our local machine?

Answer 25

There are a lot of processes constantly running that our computer needs to associate with a user

Question 26

What are the 3 main relevant fields in the standard output of cat /etc/passwd?

Answer 26

1. user name
2. user password
3. user ID(UID)

Question 27

How do you set a password for a user manually on the GUI?
Windows

Answer 27

computer management > right click user > click set password

Question 28

What Windows command lets you change a local user password?

Answer 28

net

Question 29

What are two ways to use a command line to change a password? Windows

Answer 29

net user ‘set_password’
net user *

Question 30

Which method is better for changing a user password when required to change it manually? Windows

Answer 30

net user *

is better because if you type your password out it’s going to be included in the log file in the central database and also prevents wandering eyes from seeing your new password

Question 31

What’s the windows command to force a user to change their password at next logon?

Answer 31

net user vanes /logonpasswordchg:yes

Question 32

in Windows, what makes up a strong password? 5 things

Answer 32

1. lowercase letters
2. uppercase letters
3. non-alphanumeric symbols
4. Unicode
5. numerals

Question 33

What are “hashes”?

Answer 33

password representations

Question 34

What does LM hash mean?

Answer 34

LAN Manager hash

Question 35

What are the two types of hashes? (password represenations) W

Answer 35

1. LAN Manager (LM)
2. NTLM

Question 36

Why are there 2 types of hashes? W

Answer 36

to continue backward compatibility with older OS and older applications like Windows 98

Question 37

How is the MD4 hash generated?

Answer 37

It takes the plain text password and generates a MD4 hash from it

Question 38

What does MD4 stand for?

Answer 38

Message Digest 4

Question 39

What is the SAM database? Windows

Answer 39

(local) Security Accounts Manager database

Question 40

What does concatenate mean?

Answer 40

To bind or join together

Question 41

Which hash is more resistant to brute force attacks?

Answer 41

The NTLM hash is much more resistant to brute force attacks than the LM hash

Question 42

What is an offline brute force attack?

Answer 42

Similar to dictionary attacks but doesn’t use passwords included in the text file used in those attacks

attacker uses an automated program that generates hashes or encrypted values for all possible passwords and compares them to the values in the password file.

Question 43

What is an offline dictionary attack?

Answer 43

Attacker gets offline copy of file where the password is stored and uses an automated program to crack the password (very quickly)

Question 44

What is an online dictionary attack?

Answer 44

Attacker has a text file with a list of words and uses an automated program that repeatedly tries to log on using those words

Question 45

What is entropy?

Answer 45

state of disorder. random.

Question 46

what is password entropy?

Answer 46

random in range and order of the characters to make it harder to crack

Question 47

What are 3 methods to make a brute force attack-resistant password?

Answer 47

1. Use ALT key combos
2. Do not start with the top keyboard row alphanumeric symbols !@#$%^&*()_+=
3. Do not place symbol entropy in the 8th position as only entropy

Question 48

What type of account would need a very secure password?

Answer 48

domain administrator

using Unicode characters

Question 49

How do you enter unicode characters? On PC and laptop
Windows

Answer 49

ALT + 3-4 digit number

laptop: FN + ALT + 3-4 digit number

Question 50

Do any unicode characters make a password weaker? Why?

Answer 50

Yes, they are converted into ASCII characters

Question 51

After how long should passwords be changed?

Answer 51

42 days

Question 52

How do you identify what computer OS are in use in your organization? How do you find that info on a computer?
Windows

Answer 52

Start > Run > Open > winver.exe > OK > Version # displayed

Question 53

Which OS supports 128 characters and ALT Key combos? 4

Windows

Answer 53

Windows NT 4.0, Windows 2000, Windows XP, Windows Server 2003

Question 54

What OS supports spaces in your password? windows

Answer 54

Windows NT 4.0, Windows 2000, Windows XP, Windows Server 2003

Question 55

What are 5 tips for making a password secure?

Answer 55

1. Don’t be afraid to make it long by using a pass phrase
2. Use the first letter of each word in a phrase
3. Replace letters with alphanumeric symbols
4. Avoid using complete words
5. Choose public or personal upcoming events to make it easier to remember mixed with symbols

Question 56

What are the 4 don’ts when making passwords?

Answer 56

1. Don’t create similar ones to previously used ones
2. Don’t use words that are spelled forward or backward in any language
3. Don’t use personal information
4. Don’t tie the password to the month

Question 57

What’s the command to change your password in Linux?

Answer 57

passwd

Question 58

In which location is a scrambled Linux password stored?

Answer 58

/etc/shadow

Question 59

What does the -e flag mean when applying it to passwords?

windows

Answer 59

-e = expire

Question 60

What should you do immediately after creating a user or changing a user’s password manually?

windows

Answer 60

Force them to change their password on next logon with:

net user username /logonpasswordchg:yes

Question 61

How do you add a new local user command?
windows

Answer 61

net user username * /add

then

net user username /logonpasswordchg:yes

Question 62

How do you add a new local user and require next logon password change in one command line?
windows

Answer 62

net user username pa5sw0rd /add /logonpasswordchg:yes

Question 63

What are 2 ways you can remove a user in Windows?

Answer 63

1. net user username /del
2. Remove-LocalUser username

Question 64

How do you add a user on Linux?

Answer 64

sudo useradd username

Question 65

How do you force a password change on logon in Linux?

Answer 65

sudo passwd -e username

Question 66

How do you delete a user on Linux?

Answer 66

sudo userdel username

Question 67

What are mobile device management policies?

Answer 67

apply and enforce rules about how device has to be configured

require mobile devices to be locked