Electronic Books

exe or Regedit.exe)

Go to the following key in the registry:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\
Control\LSA

On the edit menu, click Add value and use the following entries:

Value Name: RestrictAnonymous

Data Type: REG_DWORD

Value: 2
What Is the Difference?
Windows NT, XP, 2000, and 2003 all allow a NULL session to be established
by default. The reason behind this is because in a trusted network environment
each operating system will be able to identify each other??™s shared resources
and any peripherals that may be attached. This is done by using the Inter
Process Communication share (IPC$) and some network configurations
require this ability, as in a heterogeneous network.
The default setting of RestrictAnonymous for Windows NT and 2000 is a
value of 0. When NT and Windows 2000 RestrictAnonymous is set to a value
of 1, a NULL session can still be made, but much of the user enumeration
data is restricted. Setting the RestrictAnonymous value to 2 prevents a NULL
session from occurring.
For maximum security a value of 2 should be used on Windows 2000 and
a value of 1 for Windows NT; however, some connection problems may occur
in a heterogeneous network if a Windows 2000 domain must share its
resources with non-2000 clients. In this case these clients will be unable to
connect to the domain and will effectively be denied access to its resources.
62
Practical Hacking Techniques and Countermeasures
For Windows XP and 2003 the default RestrictAnonymous setting is 0.


Pages:
24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48