WebApp Sec mailing list archives

Re: successful anonymous login

From: "Adam Tuliper" <amt () gecko-software com>
Date: Tue, 27 Jul 2004 15:02:17 -0400

NtLmSsp usually deals with DCOM logins.
What workstation is HOD?

On Tue, 27 Jul 2004 10:59:11 -0700
 "Jose Rivera" <jose () papugai com> wrote:

We recently migrated our web server into windows 2003.

Not sure where this is coming from...but successful login
from an
anonymous user doesn't sound good?

Please help or point in the right direction.

Thanks
Jose


Event Type:   Success Audit
Event Source: Security
Event Category:       Logon/Logoff 
Event ID:     540
Date:         7/27/2004
Time:         10:44:20 AM
User:         NT AUTHORITY\ANONYMOUS LOGON
Computer:     xxxxxx
Description:
Successful Network Logon:
      User Name:      
      Domain:         
      Logon ID:               (0x0,0x9BA1BD3)
      Logon Type:     3
      Logon Process:  NtLmSsp 
      Authentication Package: NTLM
      Workstation Name:       HOD
      Logon GUID:     -
      Caller User Name:       -
      Caller Domain:  -
      Caller Logon ID:        -
      Caller Process ID: -
      Transited Services: -
      Source Network Address: 81.60.187.145
      Source Port:    0


For more information, see Help and Support Center at
http://go.microsoft.com/fwlink/events.asp.


---------------------------------------------------------------------
Web mail provided by NuNet, Inc. The Premier National provider.
http://www.nni.com/

Current thread:

Re: Growing Bad Practice with Login Forms, (continued)
- - - Re: Growing Bad Practice with Login Forms Konstantin Ryabitsev (Jul 27)
    - Re: Growing Bad Practice with Login Forms Ivan Ristic (Jul 27)
    - Re: Growing Bad Practice with Login Forms David Wall @ Yozons, Inc. (Jul 27)
    - Re: Growing Bad Practice with Login Forms Jason Coombs PivX Solutions (Jul 27)
    - Re: Growing Bad Practice with Login Forms Ivan Ristic (Jul 28)
  - RE: Growing Bad Practice with Login Forms Mark Curphey (Jul 27)
    - RE: Growing Bad Practice with Login Forms Konstantin Ryabitsev (Jul 27)
- Re: Growing Bad Practice with Login Forms Ian (Jul 27)
  - RE: Growing Bad Practice with Login Forms Dan C Crawford (Jul 27)
    - successful anonymous login Jose Rivera (Jul 27)
    - Re: successful anonymous login Adam Tuliper (Jul 27)
    - RE: successful anonymous login Jose Rivera (Jul 27)
    - Re: successful anonymous login Adam Tuliper (Jul 27)
    - RE: successful anonymous login Jose Rivera (Jul 27)
    - RE: successful anonymous login dave kleiman (Jul 27)
    - RE: successful anonymous login Yaakov Yehudi (Jul 28)
    - RE: successful anonymous login V. Poddubnyy (Jul 27)
    - Re: Growing Bad Practice with Login Forms Merlijn Tishauser (Jul 27)
    - RE: Growing Bad Practice with Login Forms Mark Curphey (Jul 27)
- Re: Growing Bad Practice with Login Forms Rogan Dawes (Jul 27)
- Re: Growing Bad Practice with Login Forms Andrew Steingruebl (Jul 27)

(Thread continues...)