Hi!

Oops ... was (originaly) replying to the "I thing i got a problem" thread..
but once again i must have screwed up
(getting kind of a habbit these days)

The Boxes at work is behind a firewall, but my main concern is that someone
might be able to comprimise it someday .. so keeping workstations secured
also is a big priority

Kenneth
-----Original Message-----
From: H C [mailto:keydet89yahoo.com]
Sent: Thursday, January 10, 2002 10:39 PM
To: Kenneth Christensen; focus-mssecurityfocus.com
Subject: Re: Huge security breach in standard w2k install

Here we go again...

> having installed the network scanner recommend in
> the mails on this thread,

Since you started this thread, I'm curious...which
scanner did you install?

> I discovered something horrific .. my own
> workstations at the office
> apperently expose both shares AND users/groups on
> the machines ( W2K Pro )

Kind of depends. How did you run the scanner? Did it
find this 'hole' running as an administrator, or via a
null session?

> how on earth can i disable this HUGE security hole ?

Well, again, that sort of depends. What are you
protecting from? If you're behind a firewall, and
you're NAT'd, the direct external threats to your
internal systems may be minimal.

However, it may just be best to disable NetBIOS on all
of your NICs. But then, that would prevent a lot of
functionality that you may need on your network.

__________________________________________________
Do You Yahoo!?
Send FREE video emails in Yahoo! Mail!
http://promo.yahoo.com/videomail/

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]