Re: Security Audit
From: Phil (pmarg_at_charter.net)
Date: 05/18/03
- Next message: Don Jones: "Validating Certificates for use in L2TP"
- Previous message: Steven L Umbach: "Re: Drive problem"
- In reply to: Phil: "Security Audit"
- Next in thread: Steven L Umbach: "Re: Security Audit"
- Reply: Steven L Umbach: "Re: Security Audit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 18 May 2003 16:52:35 GMT
OK. I'm just going to have to ask them what they expect me to do.
Apparently, the best way to do this is get rid of all Win9x machines. We
are on an upgrade path of 16 computers every quarter. This could take a
while with about 150 machines still runing Win9x.
On to another item in the same security audit. We are running an Win2K AD
domain with 2 domain controllers. Both DCs were flagged for the following
vulnerability:
LDAP null base returns information. Unauthorized access to files and
folders. Set up an access list control to prevent users from dumping the
base of the tree or issuing a request without knowing the base object.
>From what I can gather from my search on google, this is purposely open to
anonymous access for AD to function properly. Anyone know of a way to lock
this down without decreasing the functionality of AD?
-Phil
- Next message: Don Jones: "Validating Certificates for use in L2TP"
- Previous message: Steven L Umbach: "Re: Drive problem"
- In reply to: Phil: "Security Audit"
- Next in thread: Steven L Umbach: "Re: Security Audit"
- Reply: Steven L Umbach: "Re: Security Audit"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
