LAN Manager (LM) authentication protocol
definition of, 152–153
disabling, 184–185
LAN Manager (LM) hash algorithm
definition of, 147–148
disabling, 183–184
LAND attack, 15
Lavasoft's Ad-Aware, 70
LC5 program, 174–175
LCP program, 175
LDAP (Lightweight Directory Access Protocol)
accessing directory services using, 525
signing requirements for, 504
Ldap URI handler, 250
Ldp.exe program, 82
Least Privilege Users group, 219
License Logging service, 273
Limited User Accounts. See LUAs
linked files, malware in, 21
links, malicious, 7–8
List Folder permission, 124, 126
List permission, 123, 126
LM (LAN Manager) authentication protocol
definition of, 152–153
disabling, 184–185
LM (LAN Manager) hash algorithm
definition of, 147–148
disabling, 183–184
LMHOSTS file, 24
.lnk files, 199
Local Administrator account, 85, 99
Local Authority, 84
Local Computer Policy, 481, 483–484, 528, 539
Local Computer zone, IE, 358–359
local execution of attacks, 7–8
Local group
assigning permissions to, 97
definition of, 96, 108
SID for, 84
Local Guest account, 85, 100
Local intranet zone, IE, 360–361
local logons
allowing, 497
denying, 499
Local Security Authority (LSA) program, 118, 159
Local Security Policy, 144
Local Service account, 101, 424
Local System account, 101–102
Local Users and Groups console, 96
LocalService account, 85, 261, 262
LocalSystem account, 85, 261
logging
Event Log service, 271
event log settings, group policy, 511
hardware keystroke logging, 166
for IIS, 455, 456
keystroke logging trojans, 165
password logging trojans, 165
security log, 500, 501
Logical Disk Manager Administrative Service, 273
Logical Disk Manager service, 273
logoff scripts, 490
logon screen warning messages, enabling, 187
logon scripts, 490
Logon session X-X group, 108
logons
authentication and, 159–160
as batch job
allowing, 500
denying, 499
IIS logons, 182
local logons
allowing, 497
denying, 499
previous logon requirements, 506
as services
allowing, 500–501
denying, 499
as Terminal Services
allowing, 497
denying, 499
text for, 505–506
Loopback Policy Processing setting, for GPOs, 533
LSA (Local Security Authority) program, 118, 159
LSA secrets, 178
Lsadump2
program, 178
Lsaext.dll program, 166
Lsass.exe program, 118, 159
LSDOU rule, for GPO application, 529
.lsf files, 194, 247
LSP software, malware in, 72–73
LSPfix program, 73
.lsx files, 194, 247
LUAs (Limited User Accounts). See also RunAs feature
activities allowed and not allowed by, 58–59
administrators running programs as, 63
features in Windows Vista for, 76
Lynx browser, 350, 351
.lzh files, 199