Re: What password????

From: Roland Hall (nobody_at_nowhere)
Date: 02/08/04 

Date: Sun, 8 Feb 2004 07:14:56 -0600

"f/fgeorge" wrote:
: Wouldn't it just be easier to remove the check box that by default
: disables the guest account?
: Making the guest account active lets anyone access your machine that
: has access to your network! NOT in any way secure but works for those
: of us in home type networks!

Which shares? You have to have admin privs to access Administrative shares.
Also, having share rights does not give you file system rights. Both must
be set appropriately.

And, a word of warning. You get infected with any worm that propagates to
network shares, and your whole network is now infected. Anti-virus works in
local memory space.

Ex.

PC1 - antivirus out of date, disabled,etc.
PC2 - has shares which allows anyone, including guest to connect without
authentication with full rights
PC1 - gets infected with worm that propagates to network shares
PC2 - which has working and updated antivirus but gets infected via network
share because worm is not in PC2 memory
PC3 - user connects to PC2 and grabs infected files and runs it in its own
memory. If antivirus not running or out of date here, this computer now is
also infected.

Let's make it easier:

PC1 - infected PC2 across share and part of the payload is to overwrite all
*.vbs, *.dll, etc. files with virulent code. PC2 may be protected locally
but now has lost these files because there was no security measures put in
place to prevent it.

I think the #1 question regarding network security begins with a statement:
"We got infected and now we need help protecting ourselves. What do you
recommend...??" 

-- 
Roland Hall
/* This information is distributed in the hope that it will be useful, but
without any warranty; without even the implied warranty of merchantability
or fitness for a particular purpose. */
Online Support for IT Professionals -
http://support.microsoft.com/servicedesks/technet/default.asp?fr=0&sd=tech

Relevant Pages

  • RE: Internet security on "hotspots"
    ... there's a setting in the security policy under Network Access where ... Now if we're talking shares, anonymous never did have access in most cases, ... Disabling the guest account - it's been disabled by default since NT 3.5, ...
    (Focus-Microsoft)
  • RE: Remote Access
    ... sure how it works if there is a mixture of OSon a workgrouup network. ... there is a Home OS on a Workgroup, that Simple File Sharing has to be used as ... the face of shares and resources on stand alone workstantions. ... privleges the Guest Account provides, ...
    (microsoft.public.windowsxp.security_admin)
  • RE: Remote Access
    ... sure how it works if there is a mixture of OSon a workgrouup network. ... there is a Home OS on a Workgroup, that Simple File Sharing has to be used as ... the face of shares and resources on stand alone workstantions. ... privleges the Guest Account provides, ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Comparison AFS vs SFS
    ... whereas SFS uses the Guest account on both computers to ... assume a two-PC network (PC1 and PC2). ... Advanced file Sharing in use, either John must already have an account on ...
    (microsoft.public.windowsxp.network_web)
  • Re: NT AUTHORITYANONYMOUS LOGON
    ... indicate that a user has unauthenticated access to a share on your computer. ... If you do not want to offer shares on an XP Home computer then ... access and of course use a firewall to protect your network. ... guest to quickly check the status of the guest account. ...
    (microsoft.public.windowsxp.security_admin)