Hi everyone,
As i understand it hackers can use a tool called enum to enumerate shares and other such information through setting up a null session which the tool does automatically for the user.
I have used this tool on myself and my boss, and we were shocked to see it sneak through our firewalls.
We tried this registry edit to turn off the anon logon.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\LSA
Value Name RestrictAnonymous
Type REG_DWORD
change value from 0 to 1
But i was still able to enum his machine. Is there a way to stop null sessions to ones machine completely?
Thank you for yer help
Linear Mode
