L


LAN Manager (LM) authentication protocol

definition of, 152–153

disabling, 184–185

LAN Manager (LM) hash algorithm

definition of, 147–148

disabling, 183–184

LAND attack, 15

Lavasoft's Ad-Aware, 70

LC5 program, 174–175

LCP program, 175

LDAP (Lightweight Directory Access Protocol)

accessing directory services using, 525

signing requirements for, 504

Ldap URI handler, 250

Ldp.exe program, 82

Least Privilege Users group, 219

License Logging service, 273

Limited User Accounts. See LUAs

linked files, malware in, 21

links, malicious, 7–8

List Folder permission, 124, 126

List permission, 123, 126

LM (LAN Manager) authentication protocol

definition of, 152–153

disabling, 184–185

LM (LAN Manager) hash algorithm

definition of, 147–148

disabling, 183–184

LMHOSTS file, 24

.lnk files, 199

Local Administrator account, 85, 99

Local Authority, 84

Local Computer Policy, 481, 483–484, 528, 539

Local Computer zone, IE, 358–359

local execution of attacks, 7–8

Local group

assigning permissions to, 97

definition of, 96, 108

SID for, 84

Local Guest account, 85, 100

Local intranet zone, IE, 360–361

local logons

allowing, 497

denying, 499

Local Security Authority (LSA) program, 118, 159

Local Security Policy, 144

Local Service account, 101, 424

Local System account, 101–102

Local Users and Groups console, 96

LocalService account, 85, 261, 262

LocalSystem account, 85, 261

logging

Event Log service, 271

event log settings, group policy, 511

hardware keystroke logging, 166

for IIS, 455, 456

keystroke logging trojans, 165

password logging trojans, 165

security log, 500, 501

Logical Disk Manager Administrative Service, 273

Logical Disk Manager service, 273

logoff scripts, 490

logon screen warning messages, enabling, 187

logon scripts, 490

Logon session X-X group, 108

logons

authentication and, 159–160

as batch job

allowing, 500

denying, 499

IIS logons, 182

local logons

allowing, 497

denying, 499

previous logon requirements, 506

as services

allowing, 500–501

denying, 499

as Terminal Services

allowing, 497

denying, 499

text for, 505–506

Loopback Policy Processing setting, for GPOs, 533

LSA (Local Security Authority) program, 118, 159

LSA secrets, 178

Lsadump2

program, 178

Lsaext.dll program, 166

Lsass.exe program, 118, 159

LSDOU rule, for GPO application, 529

.lsf files, 194, 247

LSP software, malware in, 72–73

LSPfix program, 73

.lsx files, 194, 247

LUAs (Limited User Accounts). See also RunAs feature

activities allowed and not allowed by, 58–59

administrators running programs as, 63

features in Windows Vista for, 76

Lynx browser, 350, 351

.lzh files, 199



Professional Windows Desktop and Server Hardening
Professional Windows Desktop and Server Hardening (Programmer to Programmer)
ISBN: 0764599909
EAN: 2147483647
Year: 2004
Pages: 122

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net