Re: [PEN-TEST] Windows NT Security Question

[Ken Cutler <kcutler () MISTI COM>]

The Windows 2000 Server Resource Kit appears to have a utility to limit
concurrent sessions. There was also an article in an early 1999 issue of Windows
NT Magazine (now called Windows 2000 Magazine) that provided a admin user
developed script for that purpose.




Clem Colman <clem () COLMANCOMM COM> on 10/03/2000 09:43:58 AM

Please respond to Penetration Testers <PEN-TEST () SECURITYFOCUS COM>

To:   PEN-TEST () SECURITYFOCUS COM
cc:    (bcc: Ken Cutler/MISTI_BOS)

Subject:  Re: [PEN-TEST] Windows NT Security Question



> -----Original Message-----
> From: Penetration Testers [mailto:PEN-TEST () SECURITYFOCUS COM]On Behalf
> Of Edward Slusarski
> Sent: Tuesday, 3 October 2000 4:14 AM
> To: PEN-TEST () SECURITYFOCUS COM
> Subject: [PEN-TEST] Windows NT Security Question
<snip>
> Is there such a security parameter [for concurrent connections] within the
NT server
> (domain) environment
> ?  I noted that you can lock down a user to a specific MAC address /
> workstation (max of 8) but not the number of concurrent connections.
<snip>

Ed,

As stated by others no such parameter exists.  One thing I have seen done is
to limit the number of connections to the users home share to one, if you
are using home shares.

However, the only thing this will do is discourage users as they will get
error messages when attempting to log into the second machine (can't get
profile etc.)  It wouldn't stop a second person logging on with the same
account.

Cheers,
Clem.