On my home XP wireless network and workgroup I have encryption enabled. To access the network any PC needs to have its MAC address recognised by the router and provide the password.
My wife's work XP laptop can also log in automatically as there is a wireless network connection established on her machine with the password set up. This gives the machine internet access.
She can also log into any of the machines on the workgroup by navigating to the workgroup and clicking on a machine. Up comes a dialogue box asking for the username and password to log onto the selected machine. She can print, access shared folders etc which is great.
The odd part is she can enter anything in the username box and NOT provide a password and she's logged into the machine on the workgroup.
Is this a security risk? If so how do I overcome it? If it isn't much of a risk as a rogue machine would have had to log into the router first anyway (I hope) is it possible to remove this step comletely, ie by logging onto the wireless network her machine automatically joins the workgroup?