Justin, No, this isn't what this particular issue is indicating. IF (which is an option for Win2k and greater) Restrict Anonymous is set to 2, then the system state data will be available. Restrict Anonymous = 2 will prevent all enumeration, but also will remove any possibility for a machine to anonymously access the browse list, too.
What BE 8.6 did was to remove the requirement that enumeration of the system done via an anonymous connection. It's a leverage of the good old 'Red Button' vulnerability. (You know, null session, etc.... Try this, for those of you that don't know - 'net use \\<machine_name>\ipc$ "" /u:""' to a system that you are not connected to, logged in to, or fo rthat matter, have any permissions to at all. After establishing the null session, do a 'net view \\<machine_name>) In essence, that's what pre-BE 8.6 needed - the ability to create an anonymous connection. But, with the advent of RestrictAnonymous=2, the anonymous connection may not be there. Though it might be part of the problem, I don't think it IS the problem, but that's what's going on with RestrictAnonymous=2. Rick Kingslan - Microsoft MVP [Windows NT/2000] Microsoft Certified Trainer MCSA, MCSE+I - Windows NT / 2000 "Any sufficiently advanced technology is indistinguishable from magic." --- Arthur C. Clarke > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]] On Behalf Of > SALANDRA, JUSTIN > Sent: Monday, April 15, 2002 10:41 AM > To: '[EMAIL PROTECTED]' > Subject: RE: [ActiveDir] Backups - including system state > > > So what you are saying is that in order for Backup Exec 8.6 > to backup the system state without issue, you need to do this > registry hack? > > Justin A. Salandra, MCSE > Senior Network Engineer > Catholic Healthcare System > 914.681.8117 office > 646.483.3325 cell > [EMAIL PROTECTED] > > > -----Original Message----- > From: Andy David [mailto:[EMAIL PROTECTED]] > Sent: Monday, April 15, 2002 11:36 AM > To: '[EMAIL PROTECTED]' > Subject: RE: [ActiveDir] Backups - including system state > > Oh oh, pressure is on ;) > I just looked it up: TechNote ID: 239739 > > > -----Original Message----- > From: Al Lilianstrom [mailto:[EMAIL PROTECTED]] > Sent: Monday, April 15, 2002 11:30 AM > To: [EMAIL PROTECTED] > Subject: Re: [ActiveDir] Backups - including system state > > > > > Andy David wrote: > > > > Yes, 8.6 added support for the "Restrict Anonymous" key. > i.e. with the > > proper reg hack, BE 8.6 can backup the system state even if null > > sessions have been disabled on the machine you are > attempting to back > > up. > > > > Are you saying that a reg hack has to be done to get this to > work properly with 'Restrict Anonymous' set? > > If so - please share. > > al > -- > > Al Lilianstrom > CD/OSS/CSI > [EMAIL PROTECTED] > List info : http://www.activedir.org/mail_list.htm > List FAQ : http://www.activedir.org/list_faq.htm > List archive: > http://www.mail-archive.com/activedir%> 40mail.activedir.org/ > > > > -------------------------------------------------------------- > -------------- > -- > The information contained in this email message is privileged > and confidential information intended only for the use of the > individual or entity to whom it is addressed. If the reader > of this message is not the intended recipient, you are hereby > notified that any dissemination, distribution or copy of this > message is strictly prohibited. If you have received this > email in error, please immediately notify Veronis Suhler > Stevenson by telephone (212)935-4990, fax (212)381-8168, or email > ([EMAIL PROTECTED]) and delete the message. Thank you. > > ============================================================== > ============== > == > > List info : http://www.activedir.org/mail_list.htm > List FAQ : http://www.activedir.org/list_faq.htm > List archive: > http://www.mail-archive.com/activedir%> 40mail.activedir.org/ > > List info : > http://www.activedir.org/mail_list.htm > List FAQ : http://www.activedir.org/list_faq.htm > List archive: > http://www.mail-archive.com/activedir%> 40mail.activedir.org/ > List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
