Re: Administrator/User security issues

From: Jupiter Jones (jones_jupiter@hotnomail.com)
Date: 04/24/03 

From: "Jupiter Jones" <jones_jupiter@hotnomail.com>
Date: Thu, 24 Apr 2003 11:08:17 -0600

Stay away from encryption until you fully understand these documents
to keep from permanently losing the data.
EFS is very good at what it does and there is no back door.
http://www.microsoft.com/windowsxp/pro/techinfo/administration/recovery/default.asp
(58 pages)
http://support.microsoft.com/?id=223316

Is file system NTFS? you need to be for any kind of security.
Disable Simple File Sharing:
http://support.microsoft.com/default.aspx?scid=KB;EN-US;Q307874&

Are other users Administrators?
Any Administrator can do and undo anything any Administrator can do.
You are best to have two accounts for yourself, Administrator for
administrative tasks and Limited User for everything else.
All other accounts should be Limited Users otherwise they can do
anything as Administrator.
Each user that desires privacy should also set a password. 

-- 
Jupiter Jones
An easier way to read newsgroup messages:
http://www.microsoft.com/windowsxp/pro/using/newsgroups/setup.asp
Please respond to newsgroup only for everyone's benefit.
"GHS-Apathy" <cel_ss@hotmail.com> wrote in message
news:088801c30a6e$0e09f600$a301280a@phx.gbl...
> I am having a problem with making folders completely
> secure on my computer with Windows XP.  There are
> currently 5 users, all with different levels of security
> on specific folders.  I tried the encryption route, but
> that didnt work too well so i tried setting permissions
> for all my users from the admin account, but when i went
> into the other accounts, i found that the other users
> could change access levels of the rest of the users, they
> could allow/disallow privlidges on folders.  I do not want
> anyone to be able to change permissions except for the
> admin account.  If possible i would like to not allow the
> security tab in the properties of a folder to be displayed
> at all to anyone except for the admin.  How can i prevent
> this from happening....does it have something to do with
> auditing?  *HELP*

Relevant Pages

  • Re: Access is Denied
    ... If the password was to logon to the operating system then that should not ... If you used some sort of encryption then you may ... folders on the hard drive. ... the folders as an administrator starting at the root folder being sure to ...
    (microsoft.public.security)
  • Re: Users cant access program
    ... decide if users or only the administrator can use the program. ... sections of the Windows registry or protected Windows system folders. ... limited accounts, you can fix it to allow limited users to access the ...
    (microsoft.public.windowsxp.help_and_support)
  • Re: Users cant access program
    ... There is no point in the installation where you can decide if users or only the administrator can use the program. ... Quite simply, the application doesn't "know" how to handle individual user profiles with differing security permissions levels, or the application is designed to make to make changes to "off-limits" sections of the Windows registry or protected Windows system folders. ... limited accounts, you can fix it to allow limited users to access the ...
    (microsoft.public.windowsxp.help_and_support)
  • Making folder private
    ... ACCOUNTS MENU FOR THE ADMINISTRATOR. ... WANT TO MAKE THE FOLDERS PRIVATE THEN. ...
    (microsoft.public.windowsxp.security_admin)
  • Making files private
    ... I am the administrator. ... >other accounts and they respond the same way. ... >Shared Documents folders under My Computer, ... >Any user can access anyones folders and programs. ...
    (microsoft.public.windowsxp.security_admin)