Security Basics mailing list archives
Re: Share Permissions
From: "Lan Guy" <rlanguy () hotmail com>
Date: Tue, 10 Jun 2003 09:20:02 +0300
MS could rename the EVERYONE account to ANYONE to make it more clear. DR ----- Original Message ----- From: "David Gillett" <gillettdavid () fhda edu> To: <ben () lanwest com au>; "'Security-Basics'" <security-basics () securityfocus com> Sent: Monday, June 09, 2003 9:29 PM Subject: RE: Share Permissions
-----Original Message----- From: Benjamin Meade [mailto:ben () lanwest com au] Just wondering in Win2K server, when I share a folder, I set the share permissions to full access for everybody, and then control access using the file permissions. (Basically cos it cuts down on administration, and I'm lazy.) Are there any security issues running this way, or is it much of a muchness?First of all, I presume that by "file" permissions, you mean "NTFS permissions" -- which, of course, presumes that you're *using* NTFS. If all that's true, then you're probably okay. The remaining risk is that you may make shares visible and even mountable (even if all other access is denied) to people whom you might prefer not even know they exist. David Gillett --------------------------------------------------------------------------
-
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts! The Gartner Group just put Neoteris in the top of its Magic Quadrant, while InStat has confirmed Neoteris as the leader in marketshare. Find out why, and see how you can get plug-n-play secure remote access in about an hour, with no client, server changes, or ongoing maintenance. Visit us at: http://www.neoteris.com/promos/sf-6-9.htm --------------------------------------------------------------------------
--
---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------
Current thread:
- Share Permissions Benjamin Meade (Jun 09)
- RE: Share Permissions David Gillett (Jun 09)
- Re: Share Permissions Lan Guy (Jun 10)
- Re: Share Permissions Harish Gondavale (Jun 11)
- RE: Share Permissions Benjamin Meade (Jun 11)
- Re: Share Permissions Lan Guy (Jun 10)
- RE: Share Permissions David Gillett (Jun 09)
- RE: Share Permissions Manuel Fernandes (Jun 09)
- Re: Share Permissions Roger A. Grimes (Jun 09)
- <Possible follow-ups>
- RE: Share Permissions Jennifer Fountain (Jun 09)
- RE: Share Permissions Chris Berry (Jun 10)
- RE: Share Permissions Chris Berry (Jun 10)
- Re: Share Permissions ozzie ozzie (Jun 11)
- Re: Share Permissions Marco Araujo (Jun 13)