Try using the "rpcclient" program that ships with Samba TNG. It lets you do all sorts of things, including enumerate users and access the registry. If you know Perl, you can try using ActiveStates's win32 Perl to write a script which uses the built in registry functions. I used this a long time ago to retrieve the netscape mail pop-3 passwords from an entire network of NT workstations... On Tuesday 15 May 2001 02:53 am, BrainSCAN wrote: > Hello. > > I'm checking the security of a Windows NT server. I have first used Retina > to get a general overview of the server, and it has discovered that the > Guest user has access to the registry. > > As I'm not the kind of people who believes anything, and less if it comes > froma program which can give a false alarm, I have tried to access the > remote registry by myself using regedit, rededt32 and reg.exe from a W2K > Pro, but with no luck. I have tried connecting after creating a null > session, but it didn't work either. > > I could connect to other computers where I have Admin level, so it worked. > How do I connect with Guest access? Is Retina wrong or I'm doing something > wrong? How can I connect to a remote registry? > > Thanks in adavance.
This archive was generated by hypermail 2b30 : Tue May 15 2001 - 09:34:25 PDT