Re: nt 4 wkstation registry lockdown

• Previous message: neil: "nt 4 wkstation registry lockdown"
• In reply to: neil: "nt 4 wkstation registry lockdown"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: kumarp@microsoft.com (Kumar Pandit [MS])
Date: 17 Jan 2002 17:49:29 -0800

The answer depends on how each software uses that key. Some apps may
stop working if they need any access other than read.

nlehrer@yahoo.com (neil) writes:

> hi,
>
> what do people do to lock down hklm\software after the pc has been in
> use for a long time? the nsa guidelines say to give everyone read on
> hklm\software, but does not specify recursing down. however, once
> software has been loaded the cow is out of the barn. for example:
>
> Software\Adobe\Acrobat Reader\5.0
> Owner: Administrators (lg)
> Administrators (lg) (Full)*1
> CREATOR OWNER ()*(Full)
> Everyone (QWCENDR)*1
> SYSTEM (Full)*1
>
> everyone has almost everything.
>
> should i recurse down hklm\software and set all entries for everyone
> to 'read'?
>
> thanks.

-- 
Kumar Pandit
Microsoft Security Developer
(This posting is provided "AS IS" with no warranties, and confers no rights.)

• Next message: Al: "Re: Rights (Permissions) for CD-Writers ?"
• Previous message: neil: "nt 4 wkstation registry lockdown"
• In reply to: neil: "nt 4 wkstation registry lockdown"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]