Re: preventing run-as option
- From: "Clinton E. Troutman" <clint.troutman@xxxxxxxxxxxxx>
- Date: Fri, 6 Oct 2006 19:29:44 -0500
On Friday 06 October 2006 02:16, vijay shetti wrote:
hello all!!!
In my company we have domain based environment...In our proxy access
permissions are given based on the name of the user and only few users
are given rights to view a set of sites like email sites...
For example employee A is given the permission and B does not have
that.What B does is that he runs Internet explorer using run-as option
and gives A's credentials...This way he is able to surf websites that
he is not given permission to.
Is there any option using which I can disable run-as option...
From your description, your problem is not runas...
Your problem is that user B has user A's credentials. That is the security
breach.
Prevent any user from having any other user's credentials. Problem solved.
Perhaps by instituting negative consequences for giving your credentials to
another user...??
--
Clinton E. Troutman
---------------------------------------------------------------------------
This list is sponsored by: Norwich University
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.
http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------
- References:
- preventing run-as option
- From: vijay shetti
- preventing run-as option
- Prev by Date: RE: preventing run-as option
- Next by Date: RE: Suggestion needed
- Previous by thread: RE: preventing run-as option
- Next by thread: RE: preventing run-as option
- Index(es):
Relevant Pages
|
