Security on Drive
From: Jason Garms [MS] (jasong_at_microsoft.com)
Date: 04/30/03
- Next message: Jason Garms [MS]: "trickler_4010.exe"
- Previous message: Jason Garms [MS]: "Re: messenger service/IIS"
- In reply to: Brian: "Security on Drive"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 29 Apr 2003 22:45:21 -0700
Hi Brian,
By default, a new installation of Windows 2000 gets a set
of ACLs layed across the drive which are definately more
than just Everyone:FullControl. I think upgrading from an
existing NT4 install might leave the ACLs, or certain
methods of converting from FAT to NTFS.
You can find some good documents about system hardening
for different system configurations on
http://www.microsoft.com/technet/treeview/default.asp?
url=/technet/security/tools/tools.asp
There is also an external hardening guide published by the
NSA, which some people seem to like. You should be able to
find it on the NSA's website.
best,
-jasong
>-----Original Message-----
>Everyone is by default grant full control, I tried to
mess
>with it on different servers, DC, Exchange, other member
>servers, for some reason when I would change them I would
>get a lot of errors like with exchange. Whats the best
>security settings on each drive, DC, Exchange
>.
>
- Next message: Jason Garms [MS]: "trickler_4010.exe"
- Previous message: Jason Garms [MS]: "Re: messenger service/IIS"
- In reply to: Brian: "Security on Drive"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
