Re: Domain Admins and Sharepoint
- From: "Todd Klindt" <usenet@xxxxxxxxxx>
- Date: Thu, 18 May 2006 15:16:33 -0500
I think you might be misunderstanding the intent of this patch. It serves
two purposes, one it keeps the honest people honest. Locks don't keep
determined burglars out of your house. If they want in badly enough,
they'll get in. They'll bust a window, whatever. All security consists of
is making yourself a harder target. This patch keeps honest admins honest
and makes it tougher for them to get in, should they want in. The second
thing it does is make other users feel better about the security of their
sites. This patch makes it so an admin can't just accidentally walk into
their site. They have to go out of their way to get it. It gives the users
(including executives) a feeling of security, which is just as important as
actually being secure.
In closing, you're right. This patch won't keep them out if they really
want in. But putting it on is better than nothing at all if it's a concern.
tk
"Jtyc" <yo@xxxxxxxxxxxxxxxxxxxxx> wrote in message
news:eklZo5peGHA.3808@xxxxxxxxxxxxxxxxxxxxxxx
SP2 for WSS includes a way to keep local admins out of the sites they
don't have explicit person to. The implementation is covered here,
http://support.microsoft.com/kb/892295/
Interesting. Well, that will slow a domain admin down but you still can't
prevent them from seeing the data if they really want to.
.
- Follow-Ups:
- Re: Domain Admins and Sharepoint
- From: Jtyc
- Re: Domain Admins and Sharepoint
- References:
- Domain Admins and Sharepoint
- From: Daniel
- Re: Domain Admins and Sharepoint
- From: Jtyc
- Re: Domain Admins and Sharepoint
- From: Todd Klindt
- Re: Domain Admins and Sharepoint
- From: Jtyc
- Domain Admins and Sharepoint
- Prev by Date: Best approach to accomplish?
- Next by Date: Re: Domain Admins and Sharepoint
- Previous by thread: Re: Domain Admins and Sharepoint
- Next by thread: Re: Domain Admins and Sharepoint
- Index(es):
Relevant Pages
|
