Anonymous enumeration

Secure Home | Search | About

Lost Password?

Microsoft Applications Security

get this group's latest topics as an RSS feed

add this group's latest topics to your My MSN content

add this group's latest topics to your My Yahoo content

add this group's latest topics to your Google content

Subject	Author	Date
Anonymous enumeration	Ghealdan	03-02-2006

Posted by =?Utf-8?B?R2hlYWxkYW4=?= on March 2, 2006, 11:28 am

If you were Registered and logged in, you could reply and use other advanced thread options

I have security settings in a domain wide group policy set to no allow
anonymous enumeration of user info, etc. But it is not working. Our security
department using Nessus can enumerate AD accounts, running services, etc on
all our Windows servers even though I have everything I can find disabled.
We run a Windows 2003 Domain with a mixed of 2000 and 2003 member servers.
Is this normal, to my knowledge you should have to authenticate to get the
info the security guys are finding from Nessus running on a BSB box.

Similar Threads	Posted
Anonymous enumeration still enabled	December 2, 2005, 7:10 pm
Question on - Network Access: Do not allow anonymous enumeration of SAM accounts and shares	April 3, 2008, 9:48 am
WMI privilege enumeration	October 7, 2005, 4:29 am
Access Based Enumeration (ABE)	August 18, 2006, 3:59 pm
Access Base Enumeration	August 21, 2006, 3:08 pm
Anonymous Logon 540	August 10, 2005, 6:02 am
anonymous user	November 18, 2005, 9:44 pm
Best Anonymous Proxy for Winxp ??	August 1, 2005, 9:03 pm
Recommendations for 'Anonymous Surfing'	January 27, 2006, 10:08 am
Restrict Anonymous access	November 5, 2006, 5:05 am

The site map in XML format XML site map