mailing list archives
RE: bypassing Windows Domain Group Policy Objects
From: "Neil Hunt" <Neil.Hunt () bdigital com au>
Date: Fri, 28 Apr 2006 08:51:14 +0800
Michael Holstein said:
Other possible solution, cripple gpupdate.exe (XP) or
through permissions (eg: remove 'localsystem:execute').
Deleting them will
just trigger WFP to replace.
Hmmmm..... sounds like a good plan :-) I'll test that
This does indeed work, but, if the site is using WSUS or similar, then
the machine will stick out like a sore thumb. The windows admin here,
however, doesn't monitor WSUS, so that fact that my machine hasn't
reported in 90 days hasn't registered.
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
- RE: bypassing Windows Domain Group Policy Objects Neil Hunt (Apr 28)