[unisog] Threat vector of running a service using a domain account

[Ali, Saqib]

> Also - unless Microsoft changed their error messages - you can still brute
> force a locked-out account (you will get account locked out as an error
> message when you get the password correct - stupid of course).

can you please elaborate more on this or provide some relevant URLs

Thanks
saqib
http://security-basics.blogspot.com/