Re: Peer to Peer Security in WindowsXP Pro.
From: Seth Burgess (seth@equimax.com)
Date: 01/06/03
- Next message: Seth Burgess: "Re: Cant remove this virus?"
- Previous message: David Masters: "Windows XP and Common Criteria Certification"
- In reply to: Cameron Montgomery: "Re: Peer to Peer Security in WindowsXP Pro."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Seth Burgess" <seth@equimax.com> Date: Mon, 6 Jan 2003 10:32:42 -0700
Hi Cameron,
I was remiss in not posting my reply to you here. Here it is.
I've done some more testing and have run into a couple of road blocks. I
thought you might have some ideas.
(1) On my new WinXP machine, I have limited my network shares to Authorized
Users and Administrators (using local security settings.) This seems to
effectively limit shared folder access only to network machines that are
logged in using a user name and password from one of the WinXP machine
accounts. (If I log in on one of the network machines as a different user,
one that is not on the WinXP machine, access to shared folders is denied.)
However, I have a Win98SE machine that is set up for "Windows Logon." (no
username and password required.) and it is granted access to the shared
folders on the WinXP machine without any hesitation. This doesn't seem
right! I'm not sure why it is happening. Do you have any ideas?
(2) I have been unable to share encrypted files over the network. I can
share the files between users on the local machine, but not on the network.
Even when logged in using the user name and password for the file creator's
account, access is denied. This could be because I am trying to get access
to the encrypted file using a Win98SE machine, or because I am trying to
share it by opening it in WORD97. On the other hand, maybe encrypted files
can't be shared peer to peer. What do you think?
Thanks again for following up on my situation.
Seth
"Cameron Montgomery" <cmontgom@beazer.phxcoxmail.com> wrote in message
news:053901c2a845$84a71f30$cef82ecf@TK2MSFTNGXA08...
> Hi Seth,
> You got it. That's exactly what you would have to do. With
> only 6 computers and limited file access you can get away
> with this. If you're network gets any bigger though I
> would go the way Mike suggested, with a computer acting as
> a file server. Even now that would be a good solution if
> your buget allows. It would make your job alot easier
> (only have to modify user accounts/permissions at one
> location, not six). With only 6 computers though, this
> will work fine. Just make sure to keep a list of folders
> and permissions so you don't have to hunt down what you're
> looking for. Good Luck!
> >-----Original Message-----
> >Hi Cameron,
> >
> >Thanks for your thoughts. I wondered about that
> solution. Please check me
> >out on the following example and see if I am following
> you.
> >
> >Computer A has encrypted files to be shared. Users on
> Computer B and C need
> >to share those files. Here are the steps to make this
> happen.
> >
> >1. Create user accounts on Computer A that match the
> corresponding user
> >accounts on Computers B and C. Use the same user name
> and password
> >information on Computer A that are used for each of the
> relevant accounts on
> >Computers B and C.
> >
> >2. Add the new local users on Computer A to the
> permissions list for
> >accessing the files.
> >
> >Then end result of this will be that when the user on
> Computer B logs in to
> >Computer B, Computer A will treat that user just as if
> they were logged in
> >to Computer A and will give them access to the files????
> >
> >Is this really the way it works? I want to be sure I
> have understood.
> >
> >Thanks,
> >
> >Seth.
> >
> >P.S. I posted this message to the newsgroup and I sent a
> copy to your email
> >address. I'm new at this newsgroup thing. Sorry if I
> didn't do this right.
> >I will be checking back for your reply on the newsgroup.
> >
> >
> >"Cameron Montgomery" <cmontgom@beazer.phxcoxmail.com>
> wrote in message
> >news:086c01c2a7b3$fdceac80$8df82ecf@TK2MSFTNGXA02...
> >> In order to correctly setup the security you are going
> to
> >> have to all 6 user accounts(and passwords) on all 6
> >> computers and assign security (assuming you're using
> NTFS,
> >> be sure to turn off simple file sharing). Or you can
> just
> >> give the "everyone" group access, but that means
> everyone,
> >> even I, would have access.
> >> >-----Original Message-----
> >> >I administer a small peer to peer network (6 computers)
> >> that involves file
> >> >sharing across the local network. I am migrating my
> >> machines from Windows
> >> >9x and NT Workstation to WindowsXP professional.
> >> >
> >> >I am confused about how to best handle security issues
> in
> >> a peer to peer
> >> >file sharing environment. When I review the WinXP help
> >> file and some books
> >> >I have bought, I keep running into instructions for how
> >> to do things when
> >> >connected to a domain.
> >> >
> >> >Does anyone know of a good resource for understanding
> how
> >> to maximize
> >> >security in a WindowsXP peer to peer environment?
> >> >
> >> >
> >> >
> >> >.
> >> >
> >
> >
> >.
> >
- Next message: Seth Burgess: "Re: Cant remove this virus?"
- Previous message: David Masters: "Windows XP and Common Criteria Certification"
- In reply to: Cameron Montgomery: "Re: Peer to Peer Security in WindowsXP Pro."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
