Re: Basic Question
From: Asheesh Laroia (pan-news@asheeshenterprises.com)
Date: 05/27/02
- Next message: Kerry Hoskin: "Re: Desktop Security"
- Previous message: Asheesh Laroia: "Re: forgot Admin pwd!"
- In reply to: Joe: "Basic Question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Asheesh Laroia <pan-news@asheeshenterprises.com> Date: Mon, 27 May 2002 13:47:38 GMT
Don't worry about it. There is no security on an MS box, despite what the
permissions tab says.
If your users know anything, they'll just grab DebPloitand its ERunAs2X
(40K from the Internet) program. Then they can:
ERunAs2X cmd
and get a local-SYSTEM command shell. Or, better:
ERunAs2X explorer
Then they'd get a full Explorer shell (including Start Menu, Control
Panel, Explorer) with local SYSTEM privileges.
Of course, with pwdump3, they can then dump the SAM (password list) and,
with l0phtcrack, get the password to the Administrator and all other
accounts within a few hours.
-- Asheesh.
On Fri, 24 May 2002 11:08:02 -0400, Joe wrote:
> Hello:
>
> Just getting into 2000 (believe it or not) and I have a question
> regarding security. I noticed that by default, everyone has access ro
> everything...correct. To test this, I made and ordinary user with user
> priv and logged onto the box and could get everywhere and add/delete
> anything I wanted. This is not good.If yuo remove everyone at drive
> level, you can't access it if explicit rights are granted to admins or
> whomever. What am I missing here. How can I prevent ordinary users from
> accessing system folders/files etc. I feel really stupid asking this
> question but this has me a little confused.
>
> Thanks
- Next message: Kerry Hoskin: "Re: Desktop Security"
- Previous message: Asheesh Laroia: "Re: forgot Admin pwd!"
- In reply to: Joe: "Basic Question"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
