Q

How do I secure Windows NT/XP using the NetBIOS and LDAP protocols?

In this Ask the Expert Q&A, our security threats expert, Ed Skoudis, discusses how to secure Windows NT/XP using the NetBIOS and LDAP protocols and what steps should be taken to protect against intruders.

How do I secure Windows NT/XP using the NetBIOS and LDAP protocols? What steps should I take to detect and protect against intruders?
If you need to transmit NetBIOS or LDAP across an untrusted network (i.e., the Internet, your DMZ, internal network, etc.), use an encrypted VPN to ensure it is protected. For detection, employ strong host-based security on both endpoints. Use both antivirus and anti spyware tools to detect any malware inserted there. Also, diligently review the logs from these machines and look for suspicious entries, including changes to critical system files. Next, run a file integrity-checking tool, such as Tripwire, on each endpoint. Then make sure the system administrators on the server side diligently watch for additional users added to the admin group.

If you need more information, you can download the Intrusion Discovery Cheat Sheets I wrote at www.sans.org/resources/winsacheatsheet.pdf

and www.sans.org/resources/linsacheatsheet.pdf.

This was first published in May 2006

Dig deeper on Web Authentication and Access Control

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly

Close