Check or Attack Name: Guessed Server Operator Pwd

A Server Operator account has a password that has been guessed. Weak passwords allow attackers unauthorized access, including the ability to take over and replace processes, and access other computers on the network.

Require users to use a minimum length for their passwords:

1. Open User Manager. From the Windows NT Start menu, select Programs, Administrative Tools (Common), User Manager.
2. From the Policies menu, select Account to display the Account Policy dialog box.
3. In the Minimum Password Length field, specify a minimum length of at least seven characters.

—AND—

For maximum password security, apply the passfilt.dll password filter to prevent using a username as a password. See Microsoft Knowledge Base Article Q161990 "How to Enable Strong Password Functionality in Windows NT" at http://support.microsoft.com/support/kb/articles/q161/9/90.asp .