Use of Passwords for PC

[beethoven]

I read somewhere that the use of passwords for log-on to individual pc or pc in a network is not as clear cut as I thought.

Obviously a password for log-on does prevent authorised access to the pc by people physically present. However the article said that with respect to a network of "physically secure pc", it is better not to use any passwords. Supposedly without the use of log-on passwords, threats via the ethernet can at best only access local user accounts but not access any admin functions. So the recommendation was not to use a password provided physical (local) security was not an issue.

Is this correct and can someone provide a bit more info on this.

[innerpeace]

Hi, was it this article? http://blogs.msdn.com/aaron_margosis...17/158806.aspx

Quote:

OK, I know you’re bursting already: “No password?!?! Are you insane?!?!” Cool down, now. Starting with Windows XP, a blank password is actually more secure for certain scenarios than a weak password. By default, an account with a blank password can be used only for logging on at the console. It cannot be used for network access, and it cannot be used with RunAs. The user experience of just clicking on your name to log on can’t be beat for simplicity. If you can trust everyone who has physical access to the computer not to log on as someone else or abuse the admin account, this is a great way to go. If not, you can always enable passwords.

I'm not sure exactly what it means, but I remember having it in my favorites . Perhaps someone can provide a more detailed explanation.

[beethoven]

Innerpeace, yes I think this was the article I stumbled across.
Just like you would like to have some "second opinion" on this statement as I certainly was surprised to read this.