=k3Rn=
Oct 16 2003, 02:51 AM
this is the reg-file i wrote to secure hosts against ntpass attacks.
| QUOTE |
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\RemoteRegistry\]
"Start"=dword:00000003
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters]
"AutoShareServer"=dword:00000000
"AutoShareWks"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"RestrictAnonymous"=dword:00000001
|
is tis sytacitcally right? i wont to addt that *.reg file with the command regedit /s thisregfile.reg
sorry for the funny spelling - i am very drunk
hermel
Oct 16 2003, 11:29 AM
Change all dword to 00000000 and then the file ist right.
You can execute the reg file with FlashFXP too:
SITE EXEC sec.reg
tribalgoa
Oct 16 2003, 03:50 PM
I would not recommend doing it like HEMEL suggests .... it will create a window on the server that says 'reg file imported' or som,ething like that ...
change the file, add the 1st line :
REGEDIT4
This way it will be importable on all windows version ...
then run
regedit -s myreg.reg
(-s = silent)
