Re: Anonymous login
From: Eric Fitzgerald [MS] (ericf@online.microsoft.com)
Date: 05/21/02
- Next message: Harald Ums: "Re: Followup to Claims Regarding the MS02-023 Security Bulletin"
- Previous message: Lanwench: "Re: email attachments"
- In reply to: Fred Christensen: "Anonymous login"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Eric Fitzgerald [MS]" <ericf@online.microsoft.com> Date: Tue, 21 May 2002 11:31:42 -0700
You could turn off logon/logoff auditing :-)
There are many reasons why you'd see anonymous logons in your event log,
particularly with NT 4.0, which uses null sessions for browsing and to read
the user account list and do SID->name translation on remote machines. In
.NET Server we're adding more information to make it easier to interpret
logon events.
Eric
-- Eric Fitzgerald Program Manager, Windows Auditing and Intrusion Detection Microsoft Corporation "Fred Christensen" <fkchristensen@raytheon.com> wrote in message news:43cc01c1fdf0$890a5a60$9ee62ecf@tkmsftngxa05... > We are running Windows NT with Service pak 6 and when we > restart the computer an anonymous user appears in the > security log. Does anyone know how to keep this from > happening?
- Next message: Harald Ums: "Re: Followup to Claims Regarding the MS02-023 Security Bulletin"
- Previous message: Lanwench: "Re: email attachments"
- In reply to: Fred Christensen: "Anonymous login"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
