Navigation Home Green House River Cottage About PhotoLogs Certification SongLyrics SystemAdmin Network Security

Security Momgate SCORE Foundstone Top20 MS

I Read Anil HouleDude Woof Scripting Joel RobGalbraith Carlos Sam Mary Steve xkcd UserFriendly Indexed QuestionableContent RealLife Dilbert Tugster NYT Weather Radar News

Stuff WebMail QuesoKnow

Preventing Null Sessions

Win 2K

NT4

Win 2K

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA

Value: RestrictAnonymous
Value Type: REG_DWORD
Value Data: 0x2 (Hex)

Microsoft Windows NT users are not able to change their passwords after they expire.
Macintosh users are not able to change their passwords at all.

NT4

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA

Value Name: RestrictAnonymous
Data Type: REG_DWORD
Value: 1

RestrictAnonymous is set by changing the registry key to
    0 or 1 for Windows NT 4.0
    0, 1, or 2 for Windows 2000

0 None. Rely on default permissions
1 Do not allow enumeration of SAM accounts and names
2 No access without explicit anonymous permissions

Retina Issues

Flash Patch

Auto Admin Login

HKEY_LOCAL_MACHINE\Microsoft\Windows NT\CurrentVersion\Winlogon

Delete the Registry keys:
   AutoAdminLogon
   DefaultPassword