Re: Strange Login events
- From: Andreas Moroder <Andreas.moroder@[nospam]sb-brixen.it>
- Date: Wed, 30 Aug 2006 07:58:34 +0200
Steven L Umbach schrieb:
Most likely those are null sessions used by the browser service to maintain the browse list which is what users see in My Network Places. To make sure your computer is secure against anonymous access to your shares make sure that the guest account is disabled and configure any shares on the computer to use authenticated users instead of everyone or users where you want to grant that type of access. Type 2 logons are for interactive or via TS in Windows 2000 while type 3 is for network access. The link below explains more on how to restrict null sessions in Windows 2000 that can sometimes break functionality so keep that in mind if you implement "no access without explicit anonymous permissions". As long as the guest account is disabled and you have a firewall to protect your network from untrusted networks such as the internet I would not worry about those anonymous logon events though it makes sense to restrict null sessions even more as long as it does not break anything.Hello Steve,
Steve
thank you for the fast answer.
As far as I understand it's better I don't touch the system before I don't know windows better.
It would be if MS could add the possibility to not log logins from local processes.
Bye
Andreas
.
- References:
- Strange Login events
- From: Andreas Moroder
- Re: Strange Login events
- From: Steven L Umbach
- Strange Login events
- Prev by Date: Re: Strange Login events
- Next by Date: Re: Group Policy Settings
- Previous by thread: Re: Strange Login events
- Next by thread: Re: Group Policy Settings
- Index(es):
Relevant Pages
|
