Key: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AeDebug
Value: Debugger
The default debugger is not as it should be. Current value is "D:\Program Files\Microsoft Visual Studio\Common\MSDev98\Bin\msdev.exe" -p %ld -e %ld.
Key: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Value: LegalNoticeCaption
No Legal Notice has been defined. This should be set to meet C2 compliance
Key: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Value: LegalNoticeText
The text of the Legal Notice has not been defined. This should be set to meet C2 compliance
Key: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Value: Shell
User shell is not "Explorer.exe" - currently set to explorer.exe.
Key: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Value: Userinit
The user initialisation program is not set to "userint" - currently set to userinit,nddeagnt.exe.
Key: HKLM\SOFTWARE\Microsoft\OS/2 Subsystem for NT
Value:
OS/2 Subsystem has not been removed. Remove this key and its subkeys for C2 compliance.
Key: HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Environment
Value: Os2LibPath
The OS/2 Subsystem has not been fully removed. Remove this value for C2 compliance.
Key: HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Subsystems
Value: Os2
The OS/2 Subsystem has not been fully removed. Remove this value for C2 compliance.
Key: HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Subsystems
Value: Posix
The POSIX Subsystem has not been removed. Remove this value for C2 compliance.
Key: HKLM\SYSTEM\CurrentControlSet\SecurePipeServers
Value: RestrictAnonymousAccess
This value does not exist. Create it and set it to 1 as this will prevent anonymous access to the registry.
Key: HKLM\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg\allowedpaths
Value: Machine
Currently the are paths allowed into the registry by network users. For maximum security remove this key.
Key: HKLM\SYSTEM\CurrentControlSet\services\EventLog\Application
Value: RestrictGuestAccess
This value does not exist and so guest access can be gained to the Application log. Create this value and set it to 1 to restrict this.
3
Key: HKLM\SYSTEM\CurrentControlSet\services\EventLog\Security
Value: RestrictGuestAccess
This value does not exist and so guest access can be gained to the Security log. Create this value and set it to 1 to restrict this.
Key: HKLM\SYSTEM\CurrentControlSet\services\EventLog\System
Value: RestrictGuestAccess
This value does not exist and so guest access can be gained to the System log. Create this value and set it to 1 to restrict this.