<div>
If your web server is configured to allow anonymous logon then no, there is nothing to worry about.<br />

</div>


If your web server is configured to allow anonymous logon then no, there is nothing to worry about.


<div>
I don't think that's what it's referring to.... If I access a page 100 times, it doesn't give me that, not even once. Is there anything or anyone else we can ask to confirm that this either is or isn't a problem?
</div>


I don't think that's what it's referring to.... If I access a page 100 times, it doesn't give me that, not even once. Is there anything or anyone else we can ask to confirm that this either is or isn't a problem?

<div>
Dude, you're freakin' amazing! How do you do it?!
</div>


Dude, you're freakin' amazing! How do you do it?!

<div>
Who knows? Just built-up knowledge over time I suppose!
</div>


Who knows? Just built-up knowledge over time I suppose!

<div>
<div class="content wysiwyg-content">
Should I be worried if I'm seeing event 540 - ANONYMOUS LOGIN in the security audit on my web server? I've hardened the server with MBSA and disabled ALL unnecessary services. I'm running an antivirus program (ESET NOD32) on the machine and that's it. The server is in a locked down DMZ behind a Cisco ASA firewall with IPS with only the required ports open. <br />
<br />
Just seeing the anonymous login worries me... please respond quickly.<br />
<br />
I'm running WS 2003 Web Edition - fully patched - SP2<br />
<br />
Thanks,<br />
JB
</div>
</div>


Should I be worried if I'm seeing event 540 - ANONYMOUS LOGIN in the security audit on my web server? I've hardened the server with MBSA and disabled ALL unnecessary services. I'm running an antivirus program (ESET NOD32) on the machine and that's it. The server is in a locked down DMZ behind a Cisco ASA firewall with IPS with only the required ports open. 

Just seeing the anonymous login worries me... please respond quickly.

I'm running WS 2003 Web Edition - fully patched - SP2

Thanks,
JB

ANONYMOUS LOGIN on web server - audit event 540 - is this a problem?

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.

OS Security

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).

Windows Server 2003

A web server refers to the software that helps to deliver web content that can be accessed either through the Internet or through an intranet. The primary function of a web server is to store, process and deliver web pages to clients. The communication between client and server takes place using the Hypertext Transfer Protocol (HTTP). The most common use of web servers is to host websites, but there are other uses such as gaming, data storage, running enterprise applications, handling email, FTP, etc.