[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] W2k users, local admin rights and GPOs

To: <full-disclosure@lists.netsys.com>
Subject: RE: [Full-Disclosure] W2k users, local admin rights and GPOs
From: "Sergey V. Gordeychik" <gordey@infosec.ru>
Date: Thu, 30 Oct 2003 13:52:04 +0300

From: Exibar [mailto:exibar@thelair.com]

> What you do is first, delete the policies from the registry, then deny
>everyone (except for a locally created user) access to the policy key.
>You'll see the failures in the event log when a new policy attempts to
get >written.  Viola!  no more policies....

 But if I define registry keys permissions in GPO? It's works? Hm...
I'll try it.

One more question. Can any body provide examples of wide-used software
(client-side software I mean) which doesn't work without administrative
rights? 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: [Full-Disclosure] [OpenPKG-SA-2003.047] OpenPKG Security Advisory (postgresql)
Next by Date: [Full-Disclosure] Shortcut...... may cause 100% cpu use!!!
Previous by thread: Re[2]: [Full-Disclosure] W2k users, local admin rights and GPOs
Next by thread: [Full-Disclosure] TinyURL
Index(es):
- Date
- Thread