Remote registry access

• Previous message: steve: "Computer Forensics Consulting"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: security-basics@securityfocus.com
Date: Wed, 26 May 2004 09:20:56 +0000

Apologies if this has been asked before, but if so doesn't seem to be recent so might be of interest to others also.

I have a personal preference question on allowing remote registry access. Basically in Win2k up you can prevent not only anonymous registry access but in fact any remote registry access- seemingly a good idea as part of system lockdown procedures. However the draw-back of this approach is it will break many vulnerability/patch management scanners which rely on the ability to do this, and at a minimum means the results returned are unreliable or missing vital information.

Bearing this in mind, I am interested to know which way the community in general has decided to go with this dilemma- block remote registry access for higher system security or allow for improved security management?

Leon

-- 
______________________________________________
Check out the latest SMS services @ http://www.linuxmail.org 
This allows you to send and receive SMS through your mailbox.
Powered by Outblaze
---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

• Previous message: steve: "Computer Forensics Consulting"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages RE: Removing Local Admin Rights... ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ... (Security-Basics) RE: HIPAA_Compliance ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ... (Security-Basics) RE: Cisco CSA ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ... (Security-Basics) RE: Minimum password requirements ... Ethical Hacking at the InfoSec Institute. ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ... (Security-Basics) RE: process identification ... Security Consultant ... to facilitate one-on-one interaction with one of our expert instructors. ... Attend a course taught by an expert instructor with years of in-the-field ... pen testing experience in our state of the art hacking lab. ... (Security-Basics)