Re: anonymous access to win2000 machine

From: Steven L Umbach (n9rou_at_nscomcast.net)
Date: 06/23/04 

Date: Wed, 23 Jun 2004 16:47:58 GMT

Since you offer shares to users you need to have file and print sharing
enabled obviously. There are a couple things you can try.

-- First try disabling the remote registry service.
-- If you are administrator of the other computers and they are not you can
use Local Group Policy via gpedit.msc to disable their ability to use mmc
snapins such as Computer Management. --- Steve

"Newsreader" <news@news.com> wrote in message
news:OknrjBQWEHA.1128@TK2MSFTNGP10.phx.gbl...
> hi, i have a computer with myself as the only user able to log on locally,
> and 3 guest accounts (local logon denied)...for LAN users to access my
> shares...
>
> being a bit security paranoid :-) i have taken almost every step to secure
> my computer, however i still find that they can, using computer
management,
> connect to my computer, use their guest accounts username and password and
> then be able to view my local user accounts
>
> i also have through the registry disabled the default shares
> (C:\,D:\ADMIN,etc.) ,the default guest account is renamed, passworded and
> disabled and every stringent security option in the local security policy
is
> enabled. i know, i know, your probably thinking who cares they can see ur
> user accounts, however I want my computer COMPLETELY protected from any
kind
> of access remotely over the network...
>
>
> can anyone help me here to make my machine completely secure?
>
> thanks in advance
>
>

Relevant Pages

  • Re: Net Share IPC$ /Delete
    ... and what results from admin shares absence vs from the implanting ... does not get rid of IPC$. ... Disabling network administrative shares. ... Disabling IPC$ on the member server won't stop the use of RPC client on ...
    (microsoft.public.windows.server.security)
  • Re: Net Share IPC$ /Delete
    ... Here is a knowledge base article that lists out some of the things that break when Administrative Shares are missing: ... Disabling network administrative shares. ... On member servers that have no file shares enabled, ... Disabling IPC$ on the member server won't stop the use of RPC client on the ...
    (microsoft.public.windows.server.security)
  • Re: Cablemodem and hardware firewall device.
    ... skip the hardware. ... Your greatest vulnerability is with services and shares. ... NAT routers are designed for sharing a single IP among several ... no extra protection over disabling shares and unnecessary services. ...
    (comp.security.firewalls)
  • Re: Net Share IPC$ /Delete
    ... Disabling network administrative shares. ... I plan to disable these shares on both member servers and domain ... Disabling IPC$ on the member server won't stop the use of RPC client on ...
    (microsoft.public.windows.server.security)
  • Re: two active directory
    ... mailboxes for the user accounts in the trusted domain. ... enabled user objects in the trusting domain aren't used you should disable ... process re. disabling the account and changing permissions as exchange ...
    (microsoft.public.windows.server.active_directory)