mailing list archives
Re: Removing the NIC cable = EoP?
From: "James (njan) Eaton-Lee" <james.mailing () gmail com>
Date: Fri, 06 Oct 2006 21:04:33 +0100
Jessica Hope wrote:
However, RM's defaults are worse than that, as all restrictions are
stored in the registry, so you can just as quickly unrestrict yourself
with modification of a few keys...
This is still specific to windows 98 - the registry is as secure-a place
as any in Windows 2000 and above to store configuration on a
workstation, where the registry is protectable, and system settings such
as these can be (and are) locked down by a complex set of ACLs.
Without administrator credentials (or privilege escalation, unrestricted
physical access to the machine, etc), it isn't terribly feasible for
users to arbitrarily write to protected registry keys in 2000 and above.
Windows 98 was never designed to be locked down, and all of these
problems are stemming from the (possibly inadequate) methods taken to
lock down the operating system and make it participate in a network or
domain in a manner in which it was never really designed for.
The newer versions of RM Connect, which is the package that this
discussion is essentially about, are based on Active Directory with
clients on the Windows 2000 and XP operating systems, and (as far as I'm
aware) leverage the security mechanisms built into these platforms, with
corresponding levels of security..
James (njan) Eaton-Lee | 10807960 | http://www.jeremiad.org
Semper Monemus Sed Non Audiunt, Ergo Lartus - (Jean-Croix)
sites: https://www.bsrf.org.uk ~ http://www.security-forums.com
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/