I can't tell you the number of times I've gone from initial entry to having privileged access (often domain admin) from credentials stored in world readable scripts, usually in SYSVOL.