Re: How do I prevent the use of tools like Hyena from gaining info

• Previous message: Srikrishna Komatineni: "Re: How do I prevent the use of tools like Hyena from gaining info"
• In reply to: Srikrishna Komatineni: "Re: How do I prevent the use of tools like Hyena from gaining info"
• Next in thread: Hyena Support: "Re: How do I prevent the use of tools like Hyena from gaining info"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sun, 19 Jun 2005 06:13:12 -0700

If you do not enable Guest account in your environment,
and use the policy settings to prevent anonymous logins
from enumerating account, groups, and shares, then you
will not have this problem.

-- 
Roger Abell
Microsoft MVP (Windows  Security)
"Srikrishna Komatineni" <srikrishnak@hotmail.com> wrote in message
news:uNlFdpMdFHA.584@TK2MSFTNGP15.phx.gbl...
> My personnel observation when Microsoft remote registry service and
Netbios
> are running a user with even just guest rights can scan the network to get
a
> lot of information such as the shares,user id's, password policy,services
> running etc....
>
>
> "ArizonaRay" <ArizonaRay@discussions.microsoft.com> wrote in message
> news:87A568C5-E256-474C-92CC-C272BB732E27@microsoft.com...
> > OK. Our IT Auditors just visted us and with a wealth of information
> > concerning our AD Domain Accounts, Member Server, info, etc.
Fortunately,
> > I
> > am friendly with one the Auditors and was able find out they obtained
this
> > information.  They obtained the information using a tool called "Hyena".
> > They were able to gather a lot of information with tool, with no
elevated
> > user rights, just domain user accounts?  My question is "How do I
prevent
> > ordinary users from using such tools to gain information from our
> > network?"
> > I find this to be serious security risk, in that anyone with access to
our
> > network can get such information.
> >
>
>

• Previous message: Srikrishna Komatineni: "Re: How do I prevent the use of tools like Hyena from gaining info"
• In reply to: Srikrishna Komatineni: "Re: How do I prevent the use of tools like Hyena from gaining info"
• Next in thread: Hyena Support: "Re: How do I prevent the use of tools like Hyena from gaining info"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages RE: user account management ... I Tried to set a user as Power User and didn't work. ... There is a User Account component to add users and assign ... >(Enable Guest Account) ... >Reto Bucher ... (microsoft.public.windowsxp.embedded) Re: user account management ... You can always use MS Resource Kit tools or third party tools to ... different Administrator Accound Name that "Administrator"?. ... Account using the "Administrator" as name. ... >(Enable Guest Account) ... (microsoft.public.windowsxp.embedded) user account management ... There is a User Account component to add users and assign ... NOTE: User groups are DEFINED as: ... >(Enable Guest Account) ... (microsoft.public.windowsxp.embedded) Re: W2K Guest Account and mitigation ... There is a technical requirement to enable guest account. ... >> to migitate the risk? ... Any pointers are appreciated. ... (comp.security.misc) Re: Trusted SQL Connections & NT AUTHORITYNETWORK SERVICE ... SYSTEM account in terms of the credentials it uses on the network. ... hitting a SQL Server on the same machine as the web app. ... (microsoft.public.dotnet.framework.aspnet.security)