Re: EFS not secure on LAN

From: Steven L Umbach (sumbach_at_ameritech.net)
Date: 07/31/03 

Date: Wed, 30 Jul 2003 22:40:53 GMT

      They can see the files or they can see the actual data? Check ntfs
advanced permissions also to see if any users or groups exist there. Make
sure that just the user you want is included in the ntfs permissions and
system if it is there, no one else - no everyone, users, power users,
guest, etc. Double check that the permissions assigned to the folder have
actually propagated down to the individual files. Check the properties of
the files to make sure they are in fact encrypted and use the cipher utility
in that folder to see if it reports the same. If network users have proper
ntfs/share permissions, they may be able to "see" the encrypted files but
not the file contents if they are in fact encrypted they would get an access
denied message when trying to access a file. You may also want to
reconsider sharing a whole drive, though that is not the problem with your
EFS.--- Steve

http://support.microsoft.com/default.aspx?scid=kb;en-us;298009
http://support.microsoft.com/default.aspx?scid=kb;EN-US;223316

"Rob Rohrbough" <Rob_RSD@yahoo.com> wrote in message
news:03af01c356e5$665657e0$a501280a@phx.gbl...
> I have Win2k pro on a workgroup LAN. I have marked a
> directory as secure and removed all permissions but the
> owner's. When I log into the computer with another user
> name, the folder is not accessible to that user.
>
> However, that directory is on a drive that is shared with
> other computers on my peer-to-peer LAN. Users on any
> WinNT-based machine can see the encrypted data; users on
> Win0x-based machines are restricted fromt the directory.
>
> I have removed the certificate from the system.
>
> What am I doing wrong?
>
> TIA,
>
> Rob

Relevant Pages

  • Re: Minimum NTFS Permissions - Theres such a thing???
    ... ?2001 Microsoft Corporation. ... HOW TO: Set Minimum NTFS Permissions Required for IIS 5.0 to Work WGID:198 ... " List Folder Contents" ...
    (microsoft.public.inetserver.iis.security)
  • Re: Unable to delete orphaned 1.5 GB System Restore folder
    ... The fact that the tech support is based in India has nothing to do with the ... If so you may want to leave this folder alone. ... down to all children folders because i can set those permissions to ... try deleting from the command line using system by using the AT ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Security and Permissions
    ... Yes I am including the NTFS Permissions. ... Share Sub folders no Inheritance ... share AND that the NTFS of the Sub Folder overrides the ...
    (microsoft.public.win2000.security)
  • Re: Write but not delete permission on a folder?
    ... As was stated in the previous response, ntfs permissions are inherited by ... You need to first break the inheritence ... hierarchy to redefine the ntfs permissions on the folder. ...
    (microsoft.public.win2000.security)
  • Re: Unable to delete orphaned 1.5 GB System Restore folder
    ... The only computers i fix are my own. ... If so you may want to leave this folder alone. ... it includes all subdirectories with inherited permissions. ... try deleting from the command line using system by using the AT ...
    (microsoft.public.windowsxp.security_admin)