Browse By Category

Free Power Tools Brochure
Get Mark Minasi's
17-page guide today!

First Name *

Last Name *

Email Address *

* I agree to this site's
terms of use & privacy statement.

Get Newsletters

Get the Latest News
Product Updates
Helpful Tricks
Productivity Tips

Subscribe Now!

July 01, 1998 10:01 PM

NT Server Security Checklist

Rating:

(0)

Sean Daily

Windows IT Pro

InstantDoc ID #3571

Steps to address NT's security weaknesses

Windows NT systems have been the subject of much attention lately. I'm not talking about the latest Microsoft public relations campaign extolling NT's virtues, I'm talking about the full-scale security war that hackers are waging against the NT operating system (OS). Several denial-of-service and NT password gathering and hacking utilities such as GetAdmin, RedButton, and TearDrop2-based programs have appeared during the p...

ARTICLE TOOLS

Want to use this article? Click here for options!

You must be a paid Professional Member to access this entire article.

Already a Professional Member? Please log in now:

Monthly or Annual

Professional Membership

VIP Membership

Compare Member Benefits

Add a Comment

fh

Anonymous User 1/27/2005 12:36:26 PM

I liked Sean Daily’s informative “NT Server Security Checklist” (July). I’m unclear about one point. Can I remove lm-fix (which Microsoft has removed from its Web site) and still have the Windows 95 clients log on successfully to the Windows NT servers?

--John Hall

Even with lm-fix installed, Windows 95 and Win3.x clients can log on successfully. Unless you’ve set LMCompatibilityLevel (in the HKEY_LOCAL_MACHINE\\SYSTEMCurrentControlSet\\Control\\Lsa Registry key) to 2, these clients will still be able to successfully log on to the NT server. If you’ve set the value to 2, you can either reset it to 1 (send LM authentication only if the server requests it) or 0 (send LM authentication always), or simply remove the hotfix from the server.
Glad to hear you liked the article. For more information about lm-fix, see “Lm-fix: Now You See It, Now You Don’t,” page 132.

--Sean Daily

John Hall 8/11/1999 11:15:53 AM

You must log on before posting a comment.

Are you a new visitor? Register Here

Related Resources

Three Ways to Prevent USB Insecurity in Your Enterprise
A White Paper by Lumension

Secure Remote Access
A White Paper by HOB, Inc

Three Ways to Reduce Power Consumption Costs
A White Paper by Lumension

8 Things to Consider Before Sinking Money into Endpoint Security
A Tip Guide by Symantec

Change Domain admin password

I would like to change my Domain admin password, it was setup long before I took over this position and is a pretty simple password. My concern is eve...222-96222

school volunteer needs help!

VB Script to enable user account

arp cache

GOOGLE LINKS

Podcasts

To successfully implement virtual desktops, IT administrators must carefully match user requirements to specific desktop technologies. Listen to this podcast to learn what you need to keep in mind when formulating your approach to desktop virtualization.

Downloads

PacketTrap IT is a comprehensive and affordable network management and application monitoring solution that solves problems associated with bandwidth, network and application performance, and connectivity. Gain insight into your network - try PacketTrapIT free for 21 days!

Web Seminars

Aside from its employees, data is an organization’s most important resource. Join Windows technical specialist and 11-time MVP John Savill to learn the best practices for managing data using features in Windows Server.
View this web seminar on demand!

eLearning Series

We bring the experts direct to you to share their real-world perspective and expertise. During each event, three sessions stream in real time, so you can learn, ask questions, and get solutions.
Upcoming event: Getting the Most with Exchange 2010 with Paul Robichaux

Windows IT Pro, we're in IT with you