Electronic Books

The few applications that require purchase are noted on each lab and the
appropriate Internet address is provided for the reader to download.
Restrict Anonymous
Several of the labs in this manual refer to information being retrieved from a
target because a NULL session has been able to be established to the target.
Countermeasures include restricting anonymous. This applies to Windows
NT, 2000, XP, and 2003 computers only.
Prerequisites:

Port 139 or 445

Restrict Anonymous = 0

Enable File and print sharing
To Restrict Anonymous
In Windows NT

Run the Registry editor (Regedt32.exe)

Go to the following key in the registry:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\
Control\LSA

On the edit menu, click Add value and use the following entry:

Value Name: RestrictAnonymous

Data Type: REG_DWORD

Value: 1
For Windows XP, 2003

Run the Registry editor (Regedt32.exe or Regedit.exe)

Go to the following key in the registry:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\
Control\LSA
Preparation
61

On the edit menu, click Add value and use the following entries:

Value Name: RestrictAnonymous

Data Type: REG_DWORD

Value: 1

On the edit menu, click Add value and use the following entries:

Value Name: RestrictAnonymousSam

Data Type: REG_DWORD

Value: 1

On the edit menu, click Add value and use the following entries:

Value Name: EveryoneIncludesAnonymous

Data Type: REG_DWORD

Value: 0
For Windows 2000

Run the Registry editor (Regedt32.


Pages:
23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47