Workstation security
From: Alisson Leite de Morais Veras (alisson@larc.usp.br)Date: 09/28/01
- Previous message: Clover Andrew: "Re: Removing Outlook Express & NetMeeting"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Message-ID: <3BB4CF3F.975CF3DF@larc.usp.br> Date: Fri, 28 Sep 2001 16:27:59 -0300 From: Alisson Leite de Morais Veras <alisson@larc.usp.br> To: focus-ms@securityfocus.com Subject: Workstation security
Hello to all.
We are having some problems in our NT workstations. I want to give users
no permission to install and uninstall softwares, it's a good beginning
to prevent viruses and other malicious apps like trojan horses
auto-executables, for example. (READ access to:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run, RunOnce, RunOnceEx)
I'm using MMC with Security Configuration Manager and Policy Editor and
I'm too close to do it, but sometimes, somethink strange happens. For
example, in Microsoft Visual C++, a domain user can't access the
'C:\TEMP' directory to create a project, they can't even see it inside
Visual C++, but it works inside Visual Basic. 'C:\TEMP' is with
read/write permission. From explorer, a domain user can create, delete
and execute everything is owner from him and others.
Does anyone have any idea? Any documents to review my policies and
permissions?
Thanks
Alisson
- Previous message: Clover Andrew: "Re: Removing Outlook Express & NetMeeting"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
