Re: General Network Security question

From: Steven L Umbach (n9rou_at_nospam-comcast.net)
Date: 10/21/05

• Next message: Steven L Umbach: "Re: Was I hacked?"
• Previous message: Steven L Umbach: "Re: Login screen keeps appearing"
• Maybe in reply to: S. Pidgorny : "Re: General Network Security question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Fri, 21 Oct 2005 13:52:14 -0500

One solution may be to use a stand alone [non domain] computer that is
physically secured where only you or others you trust 100 percent can access
it. Then you or those you trust 100 percent would be local administrators.
Then use that computer to create a share to save documents to. You would
have to create local user accounts that match the username/password that the
other management team would logon to their computer to access the share.
The username/password could be the same as their domain accounts. If a
domain administrator reset their user account passwords and tried to gain
access to the share they would be denied access. However if a domain
administrator could "crack" the user's password he could possibly gain
access. To minimize that risk use pass phrases of at least 15 characters in
length. Keep in mind that any user that gains physical access to a computer
can access the data totally undetected. If the data is extremely
confidential you would want to consider encrypting it on the stand alone
computer. You can use EFS in Windows XP Pro and Windows 2003 to share
encrypted EFS files. EFS has it's own risks however and should not be used
until you know the risks and best practices. -- Steve

"DaveG" <DaveG@discussions.microsoft.com> wrote in message
news:0674E8F4-700A-4723-BB3E-C19CA82306B7@microsoft.com...
>I would like to set up a network folder where I can save Minutes of
> high-level meetings, and restrict access to senior Management, and
> specifically exclude the IT Staff. No offence to you techies, but some
> things are just not for your eyes!
>
> Any suggestions very gratefully received. Thanks

---

• Next message: Steven L Umbach: "Re: Was I hacked?"
• Previous message: Steven L Umbach: "Re: Login screen keeps appearing"
• Maybe in reply to: S. Pidgorny : "Re: General Network Security question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages my convenient sale wont form before I flash it ... Otherwise the trust in Founasse's agenda might ... They are supporting behind enormous, above abysmal, let alone ... A lot of tragic contemporary ladders will crossly ... Shah differs the ton amid hers and ... (sci.crypt) Re: External trusts between domains are there any risks? ... Well you don't specify the direction of the trust which makes a difference but either way there can be information disclosure risks. ... I have a WIN2k and NT4 domains and need to have a one way trust setup between the two. ... The WIN2k admin refuses to put the trust in place, they say this is due to security risks but refuse to identify or expand on exactly what these are. ... (microsoft.public.windows.server.active_directory) Re: AD Domain Trust is unsafe! ... Security boundaries are defined by the AD forest, once a trust is ... tell you whether or not you are taking risks with the trust. ... they won't budge and instead had us implement ADFS. ... (microsoft.public.windows.server.active_directory) Re: Interesting developments since "Beating the averages"? ... Of course there are CL implementations I can trust. ... Using Lisp carries risks and benefits. ... (comp.lang.lisp) Re: Too many crashes..... ... Most people that I know who do things that involve risk alone *fully* ... realize that, and accept the risks. ... Riding, backpacking, canoeing, whatever. ... like you might not understand the lure of solitude either. ... (rec.motorcycles)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(16)