Q

Restricting anonymous user rights on Win2000

I have applied the restrict anonymous registry entry. How can you further limit the anonymous user rights native

to a stand alone Windows 2000 Professional PC that is used for accessing the Internet?


Add the local user to the local administrator's group or local power users group (depending on what type of rights you want the user to have). First, unhide all hidden folders and files, or you will have problems with system files. Remove the everyone group from all partition NTFS rights. Add the groups Local/powerusers, Local/administrators, Creator, Owner and System to have full control and reset permissions on all folders and files (Local group will be the computer you are locking down). This will restrict all files to members of the groups above and permit someone from hacking in and changing or deleting important files.


For more information on this topic, visit these other SearchSecurity resources:
Best Web Links: Securing Microsoft


This was first published in June 2002

Dig deeper on Active Directory and LDAP Security

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchConsumerization

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly

Close