Windows NT User Security
From: Alisson Leite de Morais Veras (alisson@larc.usp.br)Date: 09/27/01
- Previous message: Michael Andersson: "Re: --Mark-- In /var/log/messages"
- In reply to: Eric Daigneault: "Re: name servers"
- Next in thread: Joe Stevensen: "RE: name servers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-ID: <3BB26E34.AC294BC6@larc.usp.br> Date: Wed, 26 Sep 2001 21:09:24 -0300 From: Alisson Leite de Morais Veras <alisson@larc.usp.br> To: security-discuss@linuxsecurity.com Subject: Windows NT User Security
Hello to all.
We are having some problems in our NT workstations. I want to give users no
permission to install and uninstall softwares, it's a good beginning to
prevent viruses and other malicious apps like trojan horses auto-executables,
for example. (READ access to:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run, RunOnce, RunOnceEx)
I'm using MMC with Security Configuration Manager and Policy Editor and I'm
too close to do it, but sometimes, somethink strange happens. For example, in
Microsoft Visual C++, a domain user can't access the 'C:\TEMP' directory to
create a project, they can't even see it inside Visual C++, but it's with
read/write permission. From explorer, a domain user can create, delete and
execute everything is owner from him and others.
Does anyone have any idea? Any documents to review my policies and
permissions?
Thanks
Alisson
------------------------------------------------------------------------
To unsubscribe email security-discuss-request@linuxsecurity.com
with "unsubscribe" in the subject of the message.
- Previous message: Michael Andersson: "Re: --Mark-- In /var/log/messages"
- In reply to: Eric Daigneault: "Re: name servers"
- Next in thread: Joe Stevensen: "RE: name servers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
