Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Internet security on "hotspots"

from [Laura A. Robinson] Network Security [Permanent Link]
Subject: RE: Internet security on "hotspots"
Date: Thu, 20 Apr 2006 10:07:58 -0400 
Authenticated Users and Everyone are not the same, and the difference
between them has nothing to do with the Guest account or Guests/Domain
Guests groups. In Windows 2000 and earlier, Everyone includes Anonymous
Logon. In Win2K3, the Anonymous Logon account was removed from the Everyone
group. Mixed-mode domains (Win2K) and Windows 2000 mixed functional level
domains (Win2K3) have nothing whatsoever to do with the membership of the
Everyone group. Mixed mode/FL relating to groups is about whether or not you
can create universal security groups and fully utilize domain local groups.
Last, the built-in Guest account is part of both Authenticated Users *and*
Everyone.

An old post I wrote so I don't have to type the details up again:

http://www.derkeiler.com/Mailing-Lists/securityfocus/focus-ms/2003-01/0046.h
tml


Laura 


-----Original Message-----
From: Trevor [mailto:trevor@rottdog.com] 
Sent: Wednesday, April 19, 2006 7:41 PM
To: focus-ms@securityfocus.com
Subject: RE: Internet security on "hotspots"

How about looking into using IPSec with a Pre-shared key 
(since the home user likely does not have a Cert Authority or AD)?

That link does have a few misnomers.  Using "Authenticated 
Users" on shares over Everyone is only necessary in a 
mix-mode domain.  Otherwise, AU and Everyone are the same (as 
2000 removed Guest from the Everyone group).

-Trevor

-----Original Message-----
From: ilaiy [mailto:ilaiy.e@gmail.com]
Sent: Wednesday, April 19, 2006 9:03 AM
To: nimda@retroweb.net
Cc: Agent Zr0; focus-ms@securityfocus.com
Subject: Re: Internet security on "hotspots"

Came across this checklist for home users which is pretty good ..

[url] 
http://labmice.techtarget.com/articles/winxpsecuritychecklist.htm
[/url]

./thanks
ilaiy

--------------------------------------------------------------
----------
---
--------------------------------------------------------------
----------
---


--------------------------------------------------------------
-------------
--------------------------------------------------------------
-------------




---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: MS06-013 Cumulative IE Update (912812) Issues, Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]
Next by Date:  RE: Internet security on "hotspots", Laura A. Robinson
Previous by Thread:  RE: Internet security on "hotspots", Trevor
Next by Thread:  Re: Internet security on "hotspots", Michael Knox
Indexes:  [Date] [Thread] [Top] [All Lists]