Navigation Home Green House River Cottage About PhotoLogs Certification SongLyrics SystemAdmin Network Security

Security Momgate SCORE Foundstone Top20 MS

I Read Anil HouleDude Q Woof Scripting Joel RobGalbraith Carlos Sam Mary Steve Priscilla Welcher

Stuff WebMail QuesoKnow

Preventing Null Sessions

Win 2K

NT4

Win 2K

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA

Value: RestrictAnonymous
Value Type: REG_DWORD
Value Data: 0x2 (Hex)

Microsoft Windows NT users are not able to change their passwords after they expire.
Macintosh users are not able to change their passwords at all.

NT4

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA

Value Name: RestrictAnonymous
Data Type: REG_DWORD
Value: 1

RestrictAnonymous is set by changing the registry key to
    0 or 1 for Windows NT 4.0
    0, 1, or 2 for Windows 2000

0 None. Rely on default permissions
1 Do not allow enumeration of SAM accounts and names
2 No access without explicit anonymous permissions

Retina Issues

Flash Patch

Auto Admin Login

HKEY_LOCAL_MACHINE\Microsoft\Windows NT\CurrentVersion\Winlogon

Delete the Registry keys:
   AutoAdminLogon
   DefaultPassword