Prevent Someone Else from Peeking at Your Window 2000/XP System
May 29, 2002 Timothy Prickett Morgan
Dear Readers:
If you have a Windows 2000 or Windows XP machine connected to the Internet, chances are good that your computer’s security information, including user profiles, account policies, and share names are freely available to any hacker on the Internet.
 |
This is because, by default, Windows 2000 and Windows XP do not restrict anonymous access to the above listed information.
However, you can very easily prevent others from gaining access to this sensitive information on your PC by making one very simple change to the Windows Registry.
Here’s how:
-
Click on the Windows Start button.
-
Click Run.
-
Enter “Regedit” in the Run Box and click OK.
-
The Windows Registry Editor will open.
-
Drill down through the Windows Registry to get to the following key:
-
Locate the key named restrictanonymous.
-
Double click on this key to edit it.
-
Set this key’s value to 1.
-
Reboot your PC.
HKEY_LOCAL_MACHINESYSTEMCurrentControlSetControlLSA
This setting will prevent enumeration (listing) of the Security Accounts Manager (SAM) settings on your PC. If that level of security is not strong enough for you, you can also set this key value to 2, which means that no one can access any account information on your PC without explicit anonymous permission.
For more information, point your browser to the article “How to RestrictAnonymous Registry Value in Windows 2000” at http://support.microsoft.com/default.aspx?scid=kb;EN-US;q246261 .
— Shannon O’Donnell
Sponsored By BCD INT’L |
|
BCD’s Web, and iSeries 400 Application Development Tools–won 10 industry Need to extend your applications to the Web or create new ones—Fast ? Then try Award Winning WebSmart–Superior Technology that lets you create –Get a FREE DOWNLOAD today– Run on iSeries 400 HTTP/Apache Server and / or Windows, Linux, Unix, AIX…Multi-platform / multi-server, one effort! Click & visit—www.BCDsoftware.com |
