OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: Douglas Cohn (Douglas.Cohnhostcentric.com)
Date: Wed Aug 22 2001 - 16:50:19 CDT

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    I would like to see this information as well. We have always used the
    share permissions only since there should be no way to gain direct
    access to the drives remotely and none of our servers have physical
    access available.
     
    Doug

            -----Original Message-----
            From: akomolafe
            Sent: Wed 8/22/2001 2:45 PM
            To: michael.whitelmscae.com; 'FOCUS-MSSECURITYFOCUS.COM'
            Cc:
            Subject: Re: Windows 2000's Everyone permission
            
            

            "leave share perms as they stand"? Which Microsoft document says
    that?
            
            Deji
            
            ----- Original Message -----
            From: "Michael R. White" <michael.whitelmscae.com>
            To: "'FOCUS-MSSECURITYFOCUS.COM'" <FOCUS-MSsecurityfocus.com>
            Sent: Wednesday, August 22, 2001 11:09 AM
            Subject: RE: Windows 2000's Everyone permission
            
            
    > You have be careful where you make the permissions
    modifications, share
    > perms (sharing tab) and/or NTFS perms (security tab). Mixing
    the perms
            will
    > create problems remotely. Microsoft's recommendation is to
    leave share
    > perms as they stand, and modify NTFS perms as you see fit.
    This covers
    > remote and local access without confusing your perms.
    >
    > Regards,
    >
    > Michael
    > LMSCADSI
    >
    >
    > -----Original Message-----
    > From: Damon Brinkley [mailto:damonbetcoinc.com]
    > Sent: Wednesday, August 22, 2001 9:58 AM
    > To: 'phoebe'; 'FOCUS-MSSECURITYFOCUS.COM'
    > Subject: RE: Windows 2000's Everyone permission
    >
    >
    > The first thing I do when I install a Windows 2000 OS is to
    remove the
    > permissions Everyone has to everything on the system. I then
    go back and
    > create users and groups and give them permissions as needed.
    I don't know
    > why Microsoft has the default giving the Everyone group those
    permissions
    > but I think they should be removed upon installing for obvious
    security
    > reasons.
    >
    > -----Original Message-----
    > From: phoebe [mailto:phoebetollon.net]
    > Sent: Wednesday, August 22, 2001 7:02 AM
    > To: 'FOCUS-MSSECURITYFOCUS.COM'
    > Subject: Windows 2000's Everyone permission
    >
    >
    > Hi all,
    >
    > Could someone give me some advice if I remove the permission
    as below,
    >
    > - Everyone at root c:\
    > - Everyone at c:\winnt\system\*.exe
    > - Everyone and Users at c:\winnt\system32\*.cpl
    > - Everyone and Users at c:\winnt\system32\*.msc
    > - Everyone and Users at c:\winnt\system32\*.msi
    >
    > But, I will assign "Administrators" and "System" with Full
    Control to all
    > those files which took "Everyone" out.
    >
    > Please advice.
    >
    > Thanks,
    >
    > Regards,
    > Phoebe
    >
    > ---
    > Incoming mail is certified Virus Free.
    > Checked by AVG anti-virus system (http://www.grisoft.com).
    > Version: 6.0.273 / Virus Database: 143 - Release Date:
    8/16/2001
    >
    > ---
    > Outgoing mail is certified Virus Free.
    > Checked by AVG anti-virus system (http://www.grisoft.com).
    > Version: 6.0.273 / Virus Database: 143 - Release Date:
    8/16/2001
    >