Re: How to completely lock down machine
From: Jeff Cochran (jcochran.nospam_at_naplesgov.com)
Date: 09/18/03
- Next message: Jeff Cochran: "Re: My security got compromised"
- Previous message: Jeff Cochran: "Re: Large files being written to c:\winnt\temp"
- In reply to: Phil: "How to completely lock down machine"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 18 Sep 2003 20:47:52 GMT
On Thu, 18 Sep 2003 08:58:58 -0700, "Phil" <phess@docfinity.com>
wrote:
>I have a windows 2000 server machine with Terminal Server.
>I am going to be having a user connect with terminal
>server and I need to make sure that user cannot access
>anything except 2 folders on the desktop. I was sure if I
>should make the user local or domain, but I can do either.
Local would prevent them from browsing domain systems, assuming they
don't have a domain logon account.
>I really need to know how to shut down network browsing.
Turning off NetBIOS would do it, but I'm not sure you'd want to.
Using proper accounts, passwords and file permissions should do fine
though.
>I have already shut down access to the hard drives.
Not really. The two desktop folders are on the drive. :)
>If
>anyone can give me a good process for this that would be a
>huge help. I was looking around the local security policy
>but couldnt find anything for locking down network access.
Since all they need is two folders on the desktop, why let them TS in
at all? Publish the folders on a web server, or via FTP and keep them
off the system proper.
Jeff
- Next message: Jeff Cochran: "Re: My security got compromised"
- Previous message: Jeff Cochran: "Re: Large files being written to c:\winnt\temp"
- In reply to: Phil: "How to completely lock down machine"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
