Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Modifying default behaviour of MS VPN client

from [Wozny, Scott (US - New York)] Network Security [Permanent Link]
Subject: RE: Modifying default behaviour of MS VPN client
Date: Wed, 8 Dec 2004 12:01:25 -0500 
We've implemented this already to prevent users from saving their
passwords.  The problem is not that.  If I enter NO username or
password, the client will go back to the cached login credentials and
try those which, lo and behold, work as the VPN server is authenticating
to AD.  What I need is a way to tell the client NOT to use cached
credentials when told to connect with no user name and password.

Thanks,

Scott


-----Original Message-----
From: Paul Aviles [mailto:paviles@adjoined.com] 
Sent: Wednesday, December 08, 2004 11:57 AM
To: Wozny, Scott (US - New York); focus-ms@securityfocus.com
Subject: RE: Modifying default behaviour of MS VPN client


Merge this on the registry, it will force the user to enter a user name
and password and they cannot save the password.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Parameters]
"DisableSavePassword"=dword:00000001


-----Original Message-----
From: Wozny, Scott (US - New York) [mailto:swozny@deloitte.com] 
Sent: Wednesday, December 08, 2004 10:24 AM
To: focus-ms@securityfocus.com
Subject: Modifying default behaviour of MS VPN client


I have a situation on my hands where users have no username and password
info in the MS VPN connection dialog but when they hit connect the
client will use the username and password of the currently logged on
user which grants them a successful authentication.  Anyone know how to
disable this behaviour and require that the user explicitly enter their
username and password in the connection dialog for each VPN connection?

Thanks,

Scott
































This message (including any attachments) contains confidential
information intended for a specific individual and purpose, and is
protected by law.  If you are not the intended recipient, you should
delete this message.  Any disclosure, copying, or distribution of this
message, or the taking of any action based on it, is strictly
prohibited.

------------------------------------------------------------------------
---
------------------------------------------------------------------------
---



This message (including any attachments) contains confidential information 
intended for a specific individual and purpose, and is protected by law.  If 
you are not the intended recipient, you should delete this message.  Any 
disclosure, copying, or distribution of this message, or the taking of any 
action based on it, is strictly prohibited.

---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: Modifying default behaviour of MS VPN client, marco2
Next by Date:  RE: Modifying default behaviour of MS VPN client, Paul Aviles
Previous by Thread:  RE: Modifying default behaviour of MS VPN client, marco2
Next by Thread:  RE: Modifying default behaviour of MS VPN client, Paul Aviles
Indexes:  [Date] [Thread] [Top] [All Lists]