How Does this Affect Me?
Certain configurations, such as the ones listed above, create potential holes
that can leak sensitive information if your system is compromised. Selecting
the above policy options creates a more secure network environment. The
following links provide detailed information on these security settings:
■
Enable "Network access: Do not allow storage of credentials or .NET
Passports for network authentication"
http://technet2.microsoft.com/windowsserver/en/library/66a6776a-
b1ef-43dd-8f18-d694fd07494b1033.mspx?mfr=true
Disable "Network access: Let Everyone permissions apply to anony-
■
mous users"
http://www.microsoft.com/resources/documentation/windows/xp/
all/proddocs/en-us/loc_sec_set.mspx?mfr=true
■
Enable "Accounts: Limit local account use of blank passwords to
console logon only"
http://www.microsoft.com/resources/documentation/IIS/6/all/prod-
docs/en-us/Default.asp?url=/resources/documentation/IIS/6/all/
proddocs/en-us/636.asp
What Do I Need to Do?
To select the security policies:
Select Start>>Settings>>Control Panel>>Administrative Tools.
1.
Double-click Local Security Policy.
2.
3.
Double-click Local Policies.
Double-click Security Options.
4.
5.
Double-click a security policy.
Select Enabled or Disabled.
6.
Click OK.
7.
8.
Close the Local Security Settings window.
Close the Administrative Tools window.
9.
Tests Help
Security Settings – Windows
A-31