Re: Auditing detecting anonymous user?

From: Eric Fitzgerald [MS] (ericf@online.microsoft.com)
Date: 05/29/02

• Next message: sassycat: "Locking the Keyboard"
• Previous message: Eric Fitzgerald [MS]: "Re: File permissions after installing a driver in another machine"
• In reply to: Ivan de Sousa: "Auditing detecting anonymous user?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Eric Fitzgerald [MS]" <ericf@online.microsoft.com>
Date: Tue, 28 May 2002 15:22:09 -0700

Usually the browser service or a machine enumerating the SAM. This is
completely normal.

Eric

--
Eric Fitzgerald
Program Manager, Windows Auditing and Intrusion Detection
Microsoft Corporation
"Ivan de Sousa" <ivan@netcabo.pt> wrote in message
news:7c3701c20367$2c0735a0$3bef2ecf@TKMSFTNGXA10...
> Hi! Auditing in a windows 2000 member server in a NT 4
> domain keeps logging events from an anomymous user, every
> other user is clearly identified except for this one: "NT
> Authority\anonymous".       Any idea of what this means?
>
> Thanks in advance

---

• Next message: sassycat: "Locking the Keyboard"
• Previous message: Eric Fitzgerald [MS]: "Re: File permissions after installing a driver in another machine"
• In reply to: Ivan de Sousa: "Auditing detecting anonymous user?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.security  > 2002-05