Re: secure folder sharing?

From: karl [x y] (jamescagney90210@excite.com)
Date: 09/08/02

• Next message: Chris Williams: "Security"
• Previous message: karl [x y]: "Re: format c drive windows 2000 professional"
• In reply to: Murphy: "secure folder sharing?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "karl [x y]" <jamescagney90210@excite.com>
Date: Sun, 8 Sep 2002 08:03:24 -0400

"Murphy" <murphy.wong@hongkong.com> wrote in message
news:be3f01c2561c$adb5c8c0$37ef2ecf@TKMSFTNGXA13...
> Dear all,
>
> I hear someone saying that we need to update some registry
> records in order to secure our default sharing folders
> like C$ or D$. Is that correct? If so, then how to do
> this? Many thanks.

Not exactly. The administrative shares like C$ have the share permissions
set so that only the administrators group has access to them. Also the use
of the $ dollar sign at the end of the name makes the share not appear in
browse windows, so that you have to know and type in the name of the share
to access it.

On the other hand, by default Windows uses LM LanMan compatible file sharing
which allows anonymous users including hackers to enumerate a lot of
information from your computer such as user names, share names, etc. without
a password. There is a registry entry for this. However, this is just one
of many security issues. The best idea to secure your computer is to follow
the checklists for securing windows and IIS [if it is installed] at
www.microsoft.com/security and find other checklists by searching
www.google.com for something like "harden OR hardening windows-2000" Be
sure you also have all microsoft security patches and service packs
installed, use antivirus and a firewall hardware and software such as
Netgear router or Sygate software which is free for noncommercial use, etc.
etc.

---

• Next message: Chris Williams: "Security"
• Previous message: karl [x y]: "Re: format c drive windows 2000 professional"
• In reply to: Murphy: "secure folder sharing?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Which is more secure RC2 or RC4 ? ... statements made here that I should "hire a security expert".. ... it in a remote place inside the registry, ... you going to secure your passwords when they are in a backup file ... 128 bits is far more than sufficiently secure. ... (sci.crypt) secure folder sharing? ... I hear someone saying that we need to update some registry ... records in order to secure our default sharing folders ... (microsoft.public.win2000.security) Re: Disable Cert Check under WM5 ... The password has an association with the "Secure" registry state. ... Just missed the previous post by Carl Wolz ... ... > still need a cert if you are syncing SSL ... (microsoft.public.pocketpc.activesync) Re: securing ODBC connection details in ASP apps on IIS 6 ... If you are using ODBC you can use a DSN, which stores the details in the ... You can secure the relevant registry keys (if you're afraid ... This script works fine on win2k. ... (microsoft.public.inetserver.iis.security) RE: Where to store application expiration date in a trial app ... You say "Such as the Registry" making the assumption that it is a "secure ... So where is the most secure place to store ... obj as AssemblyConfigurationAttribute; ... (microsoft.public.dotnet.languages.csharp)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.win2000.security  > 2002-09