NULL session restrictions in Windows 2000 (2/2)

• Anonymous access to wkssvc and srvsvc

  • Some hardcoded restrictions, documented in MSDN (Security requirements section)
  • Some additional restrictions for srvsvc operations when RestrictAnonymous is set to 1
  • Security descriptors for srvsvc operations stored under the DefaultSecurity registry key
  • Can be modified in Windows XP and Windows Server 2003 with the TweakUI for Windows XP tool