Re: System Permissions
From: Rob (Rob_at_discussions.microsoft.com)
Date: 10/19/04
- Next message: Edwin Roes: "RE: 680 & 529 Failure Audits"
- Previous message: Brian7M3: "Re: Blue screen Error"
- In reply to: Steven L Umbach: "Re: System Permissions"
- Next in thread: Steven L Umbach: "Re: System Permissions"
- Reply: Steven L Umbach: "Re: System Permissions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 19 Oct 2004 13:05:02 -0700
Is there any reason why the Users group is added to the systemroot
permissions? It is only read and execute but I was just curious why that
group is even included.
Thanks
"Steven L Umbach" wrote:
> Assuming you do not need guest access to the computer or are using ancient
> legacy applications you can remove everyone group from the \winnt folder or
> at best give it read permissions. The link below is to NSA security guide
> and downloads. If you view their security templates [ .inf file downloads ]
> for workstation or server you will see that the everyone group is not
> included for permissions to the \winnt folder. --- Steve
>
> http://nsa1.www.conxion.com/win2k/download.htm
>
> "Rob" <Rob@discussions.microsoft.com> wrote in message
> news:8F47A5ED-0FCE-4336-B7AC-E4B41068CF25@microsoft.com...
> > Is there a best practice for NTFS permissions on the WINNT directory, the
> > Everyone group? If someone could lead me to a resource that would be
> > great.
>
>
>
- Next message: Edwin Roes: "RE: 680 & 529 Failure Audits"
- Previous message: Brian7M3: "Re: Blue screen Error"
- In reply to: Steven L Umbach: "Re: System Permissions"
- Next in thread: Steven L Umbach: "Re: System Permissions"
- Reply: Steven L Umbach: "Re: System Permissions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
