The Machine SID Duplication MythJune 23rd, 2010 by brianl

Here is a blog post by the dudes at Sysinternals about how SID duplication is not a real security threat

http://blogs.technet.com/b/markrussinovich/archive/2009/11/03/3291024.aspx

excerpt:

 ”It’s a little surprising that the SID duplication issue has gone unquestioned for so long, but everyone has assumed that someone else knew exactly why it was a problem. To my chagrin, NewSID has never really done anything useful and there’s no reason to miss it now that it’s retired. Note that Sysprep resets other machine-specific state that, if duplicated, can cause problems for certain applications like Windows Server Update Services (WSUS), so Microsoft’s support policy will still require cloned systems to be made unique with Sysprep”

This entry was posted on Wednesday, June 23rd, 2010 at 7:33 am and is filed under Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.