Windows NT legal notice not enabled

Risk Level: Low risk vulnerability  Low

Check or Attack Name: Legal Notice
Platforms: Windows NT
Description:

The legal notice is not enabled at logon. Your security policy may require a warning notice that details site security policy.
Remedy:

WARNING: Incorrectly using Registry Editor may cause severe and irreparable damage and may require you to reinstall your operating system. Internet Security Systems cannot guarantee that problems resulting from the incorrect use of Registry Editor can be solved. Use Registry Editor at your own risk.

Add a legal notice to appear at logon:

  1. Open Registry Editor. From the Windows NT Start menu, select Run, type regedt32, and click OK.
  2. Locate the HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon key.
  3. Add text to both the LegalNoticeCaption and LegalNoticeText values. The LegalNoticeText value is limited to 255 characters. Both values must be set, or the notice will not be displayed.
  4. Reboot the computer for the changes to take effect.

—OR—

If you have access to the System Policy Editor, see Microsoft Knowledge Base Article "How to: Specify logon banner" at http://support.microsoft.com/support/ntserver/serviceware/10141617.asp.

See CERT Advisory CA-92.19 "Keystroke Logging Banner" at http://www.cert.org/advisories/CA-92.19.Keystroke.Logging.Banner.Notice.html for suggestions about notice banners.
References:

CERT Advisory CA-92.19, Keystroke Logging Banner, http://www.cert.org/advisories/CA-92.19.Keystroke.Logging.Banner.Notice.html
X-Force Logo
Know Your Risks