Security Basics mailing list archives
Remote registry access
From: "Leon North" <leon_nc () linuxmail org>
Date: Wed, 26 May 2004 09:20:56 +0000
Apologies if this has been asked before, but if so doesn't seem to be recent so might be of interest to others also. I have a personal preference question on allowing remote registry access. Basically in Win2k up you can prevent not only anonymous registry access but in fact any remote registry access- seemingly a good idea as part of system lockdown procedures. However the draw-back of this approach is it will break many vulnerability/patch management scanners which rely on the ability to do this, and at a minimum means the results returned are unreliable or missing vital information. Bearing this in mind, I am interested to know which way the community in general has decided to go with this dilemma- block remote registry access for higher system security or allow for improved security management? Leon -- ______________________________________________ Check out the latest SMS services @ http://www.linuxmail.org This allows you to send and receive SMS through your mailbox. Powered by Outblaze --------------------------------------------------------------------------- Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors. Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization. Visit us at: http://www.infosecinstitute.com/courses/ethical_hacking_training.html ----------------------------------------------------------------------------
Current thread:
- Remote registry access Leon North (May 26)