[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [Full-disclosure] Re: It's not that simple...
- To: <jasonc@xxxxxxxxxxx>
- Subject: RE: [Full-disclosure] Re: It's not that simple...
- From: "Paul Melson" <pmelson@xxxxxxxxx>
- Date: Thu, 18 Aug 2005 10:28:04 -0400
-----Original Message-----
> Subject: Re: [Full-disclosure] Re: It's not that simple...
>
> Not clear whether Windows 2000 allows disabling of null sessions, but the
implication is not.
http://www.brown.edu/Facilities/CIS/CIRT/help/netbiosnull.html#_Toc25025304
It's been part of Windows server hardening best-practices since at least
2001.
Very little pity for those who haven't hardened servers and workstation
images this late in the game.
PaulM
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/