Re: Secure file and folder permissions
From: boogy (boogy_at_discussions.microsoft.com)
Date: 05/25/05
- Next message: Ramesh, MS-MVP: "Re: How can I get the default IE security zone settings?"
- Previous message: Miroslav Kubik: "Re: How can I get the default IE security zone settings?"
- In reply to: Nepatsfan: "Re: Secure file and folder permissions"
- Next in thread: Nepatsfan: "Re: Secure file and folder permissions"
- Reply: Nepatsfan: "Re: Secure file and folder permissions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 25 May 2005 05:31:07 -0700
with the exception of using a software firewall, which I justed strated
doing, I have been doing all these things right along. I have a wireless
router, yada, yada, yada.
You threw me a curve with the NTFS thing. I did not plan to implement the
encryption method discussed on that webpage I referred to; but you seemed to
indicate the overall recommendations mentioned on that page were a bit
overkill if I understood you correctly.
After find this webpage, and after the experiences I encountered, I felt
maybe some advanced security techniques were in order. Like I said earlier,
these problems I have been running into, only started in the last few months
or so.
I have reformated my system partition and installed a fresh copy, even
though the old system seemed to be working fine. I scan for viruses and
spyware on a regular basis (lately twice a week) and have tested security at
websites such as www.grc.com, etc.
I'm just at my wits end as to what else I can do, short of getting out of
this virtual world and back to reality :)
Incidently, I tried securing folders in the root and am still having the
same problem I originally posted about where the "inherit" check box does not
appear. In the window above that each user is marked as not inherited, so
i'm wondering how important it is to follow this guy's procedure. You seem
to know what you're doing, can I ask what procedure you follow to secure
files and folders with NTFS?
Again, thanks for all your help,
-Boogy
"Nepatsfan" wrote:
> "boogy" <boogy@discussions.microsoft.com> wrote in message
> news:3C458439-48DE-4B31-A2AC-08A3E124BD71@microsoft.com...
> > Can you explain what you mean by using NTFS to secure files and
> > the procedure
> > involved in doing so?
> >
> > Although I have been using XP for years, I only recently became
> > only
> > concerned with security settings. In the last few months, I
> > have watched my
> > adm password be altered, various files implanted on partitions
> > I do not use
> > for downloads, and other exploits.
> >
> > If you can suggest better resource for handling this, I'd
> > appreciate it. I
> > know there is a new book coming out on XP security by Bott, but
> > it is not due
> > to be released until 6/2005.
> >
> > Thanks for your help,
> > -Boogy
> >
>
> "Using NTFS to secure files" is what you were doing when you ran
> into the permission inheritance problem. My mentioning it was
> only to point out that it is a much safer alternative to file
> encryption. Avoid EFS unless you want to lose your files. Use
> NTFS file permissions to restrict access to your personal files.
> That's what I meant.
>
> Instead of resources, I'm going to pass along some suggestions.
> First, post a new question to this group. Outline the problems
> you've encountered recently. Ask for suggestions on ways to make
> your computer more secure. Here's what my answer would include:
>
> 1. Buy a router. I don't care if you've only got one computer,
> put a NAT router between it and the internet. Some models by
> Netgear, D-Link, Linksys or Belkin are available for less than
> $20 after rebates. I'm using a Netgear Wireless G router that
> cost me $10 + the cost of a postage stamp after rebates.
>
> 2. Use a software firewall other than the one built into Windows.
> Besides the programs available from companies such as Symantec
> and McAfee there are a number of free ones available like Zone
> Alarm, Kerio and Sygate.
>
> 3. Make sure you are running a recent release of an updated
> antivirus program, nothing earlier than 2004. Make sure you're
> using the latest versions of AdAware, Spybot S & D and
> SpywareBlaster. Run weekly scans with all these applications.
>
> 4. Use a password on your Windows account and make sure it is
> hard to guess but easy to remember. If you must create a password
> reset disk keep it in a secure location.
>
> 5. Create two accounts for yourself. One would be a Computer
> Administrator and would only be used to perform adminstrative
> tasks. The other would be a Limited account and would be used in
> day to day operations. Leave the built-in Adminstrator account
> for emergency use only.
>
> 6. Backup anything you can't afford to lose. And, after you back
> it up, check to make sure that what you think is there is really
> there. I use an external USB hard drive to make an image of
> what's on my main computer's HD. I run an automatic backup
> overnight on a weekly basis. Even if you only have a CD burner,
> use it to backup your personal files.
>
> Those are starting points. Any other security measures are up to
> you.
>
> Good luck
>
> Nepatsfan
>
>
>
>
>
- Next message: Ramesh, MS-MVP: "Re: How can I get the default IE security zone settings?"
- Previous message: Miroslav Kubik: "Re: How can I get the default IE security zone settings?"
- In reply to: Nepatsfan: "Re: Secure file and folder permissions"
- Next in thread: Nepatsfan: "Re: Secure file and folder permissions"
- Reply: Nepatsfan: "Re: Secure file and folder permissions"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
