OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: FW: Windows: Local Security Workaround
From: J . Phillips (jamie.phillipsNS.SYMPATICO.CA)
Date: Mon Apr 10 2000 - 21:32:36 CDT


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

The fact remains above all else, that to implement any kind of local
security policy, regardless of any network connectivity or any other
circumstance you have to start with a secure file system. Windows 9x
uses a FAT16 or FAT32 file system which has no inherent access
restrictions and thus it is near impossible to protect any resources
residing on these volumes.

Worthy of note, Windows NT uses NTFS as a file system which overcomes
this limitation by offering local file restrictions that, at the
discretion of the admin, inhibit users from modifying resources
residing on local drives. Be warned however, that out of the box
there is little security actually implemented.

Jamie

- -----Original Message-----
From: VULN-DEV List [mailto:VULN-DEVSECURITYFOCUS.COM]On Behalf Of
Robert
Sent: April 10, 2000 1:22 AM
To: VULN-DEVSECURITYFOCUS.COM
Subject: Re: Windows: Local Security Workaround

Yes, this is a windows 95 box. And by "network setting" I mean denied
by the
administrator, however, if you are not logged in then that doesn't
take any
affect at all, at least not in this situation.
Sorry for the misuse of terminology, I'm not that big on windows
really. Heh.

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.2 for non-commercial use <http://www.pgp.com>

iQA/AwUBOPKORtGSUCkLAscrEQLi1wCgzYQbEybzSrYldcdceIvf3Z+MuXcAoLeD
HSJtgBwYNIi+dwXgujny8xJ2
=pnAk
-----END PGP SIGNATURE-----