|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Doubleclick programs entry on start menu
From: Jon Fiedler (jmf9
cwru.edu)
Date: Sat Jun 12 2004 - 08:10:44 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
James D. Stallard wrote:
>We have a W2K/Terminal Server/Citrix policy implemented to restict users
>from accessing the systemdrive. (M:)
>
>The systemdrive is also hidden and not accessible because of this policy.
>
>Eveything works fine BUT we discovered that when a user opens his START menu
>and he/she doubleclicks on "Programs" the windows explorer opens
>M:\Documents and Settings\%username%\Start Menu\Programs. From that point
>the user can navigate up to the systemroot.
>
>OS is Windows 2000
>
>I don't believe that a policy exists in Windows 2000 that will affect this
>behaviour.
>
>Any thoughts around policies or NTFS rights that I can use to stop or
>mitigate this?
>
Don't think you can do it with NTFS rights - the user will need Read on
the system drive so they can use the OS (at least List on the root, and
Read on any folders with programs). Obviously, you can't take away
their rights on their home directory.
My guess would be to take a look at the default behaviour for opening a
folder (in Explorer, under Tools | Folder Options | File Types); you
should be able to apply a policy to that. Note that this may change
other behaviour, so you'll have to be careful.
Jon
---------------------------------------------------------------------------
---------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]