Re: SecureSystemPartition value in securit policy .inf files

From: David Barnes (david_at_nospam-bitsolve.com)
Date: 02/11/04 

Date: Wed, 11 Feb 2004 15:25:07 -0000

Yeah.. got these.. 'War and Peace' is smaller!! (and more straightforward)
I do note in the bastion host .inf file that it does not include any
filesystem protection settings..And some of the settings that are in the
enterprise secure settings files are missing..
Does one have to apply these in sequence? ..
The documents hint that these are 'cumulative' and the lower settings files
are your 'base' starting point.. The fact that some settings are missing in
the bastion file tend me to think that I have to apply others first.

David

"Roger Abell" <mvpNOSpam@asu.edu> wrote in message
news:uBlg9B57DHA.3880@tk2msftngp13.phx.gbl...
> You may want to download the XP and the W2k3 Security
> and the Trheats and Countermeasures Guides, as these have
> extensive discussions of the policies, as well as further templates.
>
>
http://www.microsoft.com/downloads/results.aspx?productID=&freetext=security+hardening+guide&DisplayLang=en
>
> --
> Roger Abell
> Microsoft MVP (Windows Server System: Security)
> MCSE (W2k3,W2k,Nt4) MCDBA
> "David Barnes" <david@nospam-bitsolve.com> wrote in message
> news:O3hA0xq7DHA.2300@TK2MSFTNGP10.phx.gbl...
> > Ok so I'm reviewing the baseline security policy files and building a
> > tighter one for our Bastion host..
> >
> > However I've run across a parameter that I can't find any information
> > on.."SecureSystemPartition".
> > A google search only throws up a few entries and these all have this
> listed
> > in an appendix as an example of a policy .inf file!! How helpfull!
> > A search on Microsoft.com reveals "sorry, no results were found"
> >
> > This parameter is evident even on XPpro in several of the security
> > templates. eg c:\windows\security\templates\securedc.inf
> >
> > Does anyone know what this is for, or better still know of any decent
> > documentation for the parameters and settings in these files. IE what
the
> > parameters are, what their possible values and defaults are, what the
> > consequences are of each value setting, and what interactions and
> > restrictions need to be observed.
> >
> > David
> >
> >
>
>

Relevant Pages

  • Re: GPO Update Problem (SYSVOL access via UNC)
    ... Server Security and Auditing Policy ... This list only includes links in the domain of the GPO. ... The settings in this GPO can only apply to the following groups, users, ...
    (microsoft.public.win2000.group_policy)
  • Re: GPO Update Problem (SYSVOL access via UNC)
    ... > Server Security and Auditing Policy ... > This list only includes links in the domain of the GPO. ... > The settings in this GPO can only apply to the following groups, users, ...
    (microsoft.public.win2000.group_policy)
  • Re: GPO Update Problem (SYSVOL access via UNC)
    ... >> Server Security and Auditing Policy ... >> The settings in this GPO can only apply to the following groups, users, ... >> Windows Firewall: Allow file and printer sharing exception Enabled ...
    (microsoft.public.win2000.group_policy)
  • Re: Problem with NT4 domain trusting W2003 domain
    ... | implemented the settings you suggested in the "default domain controller ... | GPO" and not in the local GPO, and verified with GPMC that they are ... |> suspect there are some settings in security options caused this problem, ...
    (microsoft.public.windows.server.migration)
  • Re: Open file - security warning....How do I disable it?
    ... You possibly should move this over to the IE security newsgroup, ... IE internet options have both all user and per user settings. ... We are in the process of migrating to windows server 2003. ... and then remove security inside the network. ...
    (microsoft.public.security)
Quantcast