Networking:
Anonymous users can list domain user names and enumerate share names by default. Lets stop this from happening!
MS Docs:
246261
296405
163846
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA]
"RestrictAnonymous"="1"
2 can only be used in "pure" environments. You'd better read those MS
docs if you need more information about that setting cause I don't want
to explain it here ;)
You'll
find all these mysterious shares that look something like C$ which you
can't simply delete. These are called administrative shares which the
only way that I've found to remove these is through the registry.
They are created automatically on local disk drives in 2k and XP both.
MS Docs:
245117
288164
Lets disable this. 0 means disabled, 1 means enabled
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters]
"AutoShareServer"="0"
"AutoShareWks"="0"
When
you're accessing a password protected share, Windows shows the password
in clear text when you're entering it. Lets replace this with asterisks.
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Network]
"HideSharePwds"="1"
