Ask a Question related to Windows Networking, Design and Development.
-
Laser #1
Security Question ???
We have a small peer to peer network with nine XP-Pro Computers networked
and connected to the Internet through a DSl router/modem. One computer is
used as a file server where we store files for the various departments in
separate folders. On this computer, we have added all the users that may
need to access these files from the network. This works great for us since
we can control the access to these folders from the remote computers though
XP's shares permission settings. Like I said, This works well, except,
anyone can log on to the file server computer and then have access to all
the files.
My question is: Is there any way of limiting access to folders when someone
is signed on to the local machine. Better yet, is there a way that I can
restrict someone from signing on to the local machine while still allowing
them to sign on remotely from the network?
Thanks in advance
Mike
Laser Guest
-
CF security question
I was wondering, is it possible, and if so a good idea, to put your secured admin pages behind CF security and .htaccess? In other words put your... -
A Question regarding SWF security when using FCS
I know that there is probably no way to completely secure your Flash development work if you want to have end users see it...I was wondering (not... -
Security Question
Hey all... I am after some help.. I have a database where i want only employees within a particular organisation to read details about other... -
Another question for AIX Security
When I did a security review on Solaris two years ago, one of the items I checked was to verify permission for both files /var/adm/utmp and... -
Question about Security
I'm going to be writing an asp.net application that certain users have access to specific pages and others don't. User authorization will be... -
Matt DuBois [MSFT] #2 Re: Security Question ???
You have a couple of choices here.
1) If the files are on a volume that is formatted with NTFS, then you can
apply the same permissions via NTFS and then access would only be allowed if
appropriate, even when logged on locally.
2) You can remove the right for anyone but Administrators of the file server
computer to log on locally.
A) Make 100% sure you have the username and password of an account in
the Administrators group on the file server.
This is important. If you don't do this, you won't be able to
log on later, so make sure.
B) Start Menu -> Control Panel -> Administrative Tools -> Local Security
Policy
C) Expand Local Policies and click on User Rights Assignment
D) Add "Administrator" to "Log on Locally" (or alternatively another
Administrative account that you have the password to - just being safe here)
E) Remove everythig but "Administrators" and the account you added in
step D from "Log on Locally".
And that should do it. If need be, you can create other groups of people to
add to "Log on Locally" if you want them to be able to log on but don't want
them to have administrative rights. In this case, those other people would
have access to all the files unless you also implemented Option 1.
Administrators on a computer can always get access to any non-encrypted file
on the system, even if it is locked down with permissions, so always make
sure that only people you trust are Administrators.
--
This posting is provided AS IS with no warranties, and confers no rights.
"Laser" <laserfrk@hotmail.com> wrote in message
news:uQ0w34vRDHA.1552@TK2MSFTNGP12.phx.gbl...though> We have a small peer to peer network with nine XP-Pro Computers networked
> and connected to the Internet through a DSl router/modem. One computer is
> used as a file server where we store files for the various departments in
> separate folders. On this computer, we have added all the users that may
> need to access these files from the network. This works great for us since
> we can control the access to these folders from the remote computerssomeone> XP's shares permission settings. Like I said, This works well, except,
> anyone can log on to the file server computer and then have access to all
> the files.
>
> My question is: Is there any way of limiting access to folders when> is signed on to the local machine. Better yet, is there a way that I can
> restrict someone from signing on to the local machine while still allowing
> them to sign on remotely from the network?
>
> Thanks in advance
>
> Mike
>
>
Matt DuBois [MSFT] Guest
-
Laser #3 Re: Security Question ???
Thanks,
I think this will do it
Mike
"Matt DuBois [MSFT]" <mdubois@online.microsoft.com> wrote in message
news:%238G5izzRDHA.3236@TK2MSFTNGP10.phx.gbl...if> You have a couple of choices here.
>
> 1) If the files are on a volume that is formatted with NTFS, then you can
> apply the same permissions via NTFS and then access would only be allowedserver> appropriate, even when logged on locally.
>
> 2) You can remove the right for anyone but Administrators of the fileSecurity> computer to log on locally.
> A) Make 100% sure you have the username and password of an account in
> the Administrators group on the file server.
> This is important. If you don't do this, you won't be able to
> log on later, so make sure.
> B) Start Menu -> Control Panel -> Administrative Tools -> Localhere)> Policy
> C) Expand Local Policies and click on User Rights Assignment
> D) Add "Administrator" to "Log on Locally" (or alternatively another
> Administrative account that you have the password to - just being safeto> E) Remove everythig but "Administrators" and the account you added in
> step D from "Log on Locally".
>
> And that should do it. If need be, you can create other groups of peoplewant> add to "Log on Locally" if you want them to be able to log on but don'twould> them to have administrative rights. In this case, those other peoplefile> have access to all the files unless you also implemented Option 1.
> Administrators on a computer can always get access to any non-encryptednetworked> on the system, even if it is locked down with permissions, so always make
> sure that only people you trust are Administrators.
>
>
> --
> This posting is provided AS IS with no warranties, and confers no rights.
>
> "Laser" <laserfrk@hotmail.com> wrote in message
> news:uQ0w34vRDHA.1552@TK2MSFTNGP12.phx.gbl...> > We have a small peer to peer network with nine XP-Pro Computersis> > and connected to the Internet through a DSl router/modem. One computerin> > used as a file server where we store files for the various departmentsmay> > separate folders. On this computer, we have added all the users thatsince> > need to access these files from the network. This works great for usall> though> > we can control the access to these folders from the remote computers> > XP's shares permission settings. Like I said, This works well, except,
> > anyone can log on to the file server computer and then have access toallowing> someone> > the files.
> >
> > My question is: Is there any way of limiting access to folders when> > is signed on to the local machine. Better yet, is there a way that I can
> > restrict someone from signing on to the local machine while still>> > them to sign on remotely from the network?
> >
> > Thanks in advance
> >
> > Mike
> >
> >
>
Laser Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
