RE: Ensuring Disabling/Uninstalation of Windows XP Firewall in LA N enviro.
From: Terwelp, Jeff (JTerwelp@rwbaird.com)Date: 04/19/02
- Previous message: Laura A. Robinson: "Re: windows domain question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Terwelp, Jeff" <JTerwelp@rwbaird.com> To: 'Nigel Hedges' <evilnigel@iprimus.com.au> Date: Fri, 19 Apr 2002 10:39:01 -0500
Since the Group Policy editor is really just a fancy GUI for making registry
changes, you can make GP changes in a non-AD environment by running a
registry watcher as you configure the policy. Modifying the following
registry keys will cause the checkbox used to enable ICF to be grayed out:
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Network
Connections\NC_PersonalFirewallConfig = 0
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Group Policy
Objects\LocalMachine\Software\Policies\Microsoft\Windows\Network
Connections\NC_PersonalFirewallConfig = 0
Hope that helps.
Jeff Terwelp
-----Original Message-----
From: Nigel Hedges [mailto:evilnigel@iprimus.com.au]
Sent: Thursday, April 18, 2002 7:48 PM
To: FOCUS-MS@securityfocus.com
Subject: Ensuring Disabling/Uninstalation of Windows XP Firewall in LAN
enviro.
Hi,
Scenario: Administrator wants to ensure that Internet Connection Firewall is
disabled, or to ensure uninstallation of the Windows XP Firewall components
from a SOE.
Looking up M$ support and the web, I could only find an article pertaining
to Group Policies and the ability to Prohibit a user being on the domain
with XP Firewall enabled.
Since this is not an AD environment as yet (NT4 PDC), are there any other
suggestions as to how they would ensure that XP Firewall is consistently
disabled or remains uninstalled?
Regards,
Evilnigel.
**********************************************************************
Robert W. Baird & Co. is required by regulation to review and store
both outgoing and incoming electronic correspondence. Baird
may be required to produce-mail records for the SEC or other
regulators in a criminal investigation. E-mail transmission cannot
be guaranteed to be secure, timely or error-free. Baird therefore
recommends that you do not send confidential information to us via
electronic mail, including account numbers, social security
numbers or any personal identification numbers. This is not an
offer, or solicitation of an offer to buy or sell any security
investment or other product. Any information regarding specific
investment products is subject to change without notice. Any review,
forwarding, dissemination or other use of, or taking of any action in
reliance upon this information by persons or entities other than the
intended recipient is prohibited. If you received this in error,
please contact the sender and delete the material from any computer
on which it exists.
- Previous message: Laura A. Robinson: "Re: windows domain question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
