Re: Monitor User Remotely.
From: Steven L Umbach (sumbach55_at_ameritech.net)
Date: 11/26/03
- Next message: Steven L Umbach: "Re: inetinfo.exe sucking up cpu -- what is it. what to do?"
- Previous message: Eric: "Setting up new W2K3 School Network"
- In reply to: Tom: "Monitor User Remotely."
- Next in thread: Veronica Loell: "Re: Monitor User Remotely."
- Reply: Veronica Loell: "Re: Monitor User Remotely."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 26 Nov 2003 18:28:20 GMT
There are various things that you can do. A keyboard logger will record
activity [check legal and personel first], auditing of process tracking on
the computer may be helpful but will generate a lot of events in the
security log in Event Viewer that are not the easiest to interpret, viewing
temporary files/temporary internet files and history folder can be done
remotely via administrator share, and folder files have creation timestamps
and ownership information.
Having said that, I have to wonder if this user needs to be a power user or
administrator on his computer. Making him a regular user may stop a lot of
that. I would also enable auditing of logon events on his computer so that
you can track his usage and other users time on his computer. If he is a
local administrator however, he can clear the security log. You may want to
give him a pristine installation and then back it up to have as evidence or
proof that at a particular point in time the computer was clean. That along
with the security log files will help you build a case against him. ---
Steve
"Tom (Tom)" <webmaster@takenet.com> wrote in message
news:3fc4b78c.184865502@news.btclick.com...
> I have 1 user, who keeps installing priate sofwtare, virused software,
> or trojans..
>
> We keep telling him the restrictions of business systems.
>
> Is there any way we can remotely monitor him, without him seeing that
> we are watching ??
>
> All staff are advised that the Pc could be monitored, so we have no
> problems with permission or privacy..
>
> Ideally, we don't want him to know that we are monitoring him..
>
> Any IDEAS >>???
- Next message: Steven L Umbach: "Re: inetinfo.exe sucking up cpu -- what is it. what to do?"
- Previous message: Eric: "Setting up new W2K3 School Network"
- In reply to: Tom: "Monitor User Remotely."
- Next in thread: Veronica Loell: "Re: Monitor User Remotely."
- Reply: Veronica Loell: "Re: Monitor User Remotely."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
