Re: Security question for the group
From: Andrew Webb (andrew.webb@not-here.eme-med.co.uk)
Date: 01/02/03
- Next message: Russell: "Re: event logs"
- Previous message: William Bartholomew: "Hotfixes and Other Updates"
- In reply to: Denny: "Security question for the group"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Andrew Webb" <andrew.webb@not-here.eme-med.co.uk> Date: Thu, 2 Jan 2003 11:55:44 -0000
Don't forget to check for ANY means of running arbitrary files (eg. web
browser, office applications, help files etc. etc.) Also disable the task
list from ctrl-alt-del and all that kind of stuff using policies or the
registry otherwise they can just run explorer and away they go. Oh, and
assume that they can run explorer (or anything else) when setting up your
security, even if you think they can't run explorer. That way, when they
find a way round it, they will still have a hard time finding anything
useful.
Andrew
"Denny" <denny2000@hotmail.com> wrote in message
news:TAQQ9.105$K31.101849276@newssvr11.news.prodigy.com...
> In a windows 2000 workstation running a custom user interface (no
explorer)
> and a physically secure box with access only to a keyboard, is there
anyway
> to hack in to the network?
> I manage a network that is accessed by vendors to check on inventory
> locations so they need access to the network but not all of it. I
programmed
> an app. to run instead of windows explorer that only accesses the
inventory
> data but some of the vendor seem to have a curious side and I don't want
> them to see any sensitive data.
> Thanks in advance, Denny
>
>
- Next message: Russell: "Re: event logs"
- Previous message: William Bartholomew: "Hotfixes and Other Updates"
- In reply to: Denny: "Security question for the group"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
