RE: SYSVOL/NETLOGON visibile by ALL USERS
- From: v-kzhao@xxxxxxxxxxxxxxxxxxxx ("Ken Zhao [MSFT]")
- Date: Tue, 18 Sep 2007 05:44:12 GMT
Hello,
Thank you for using newsgroup!
Based on my research, the share permissions for the
%SystemRoot%\SYSVOL\Sysvol folder to the following default permissions:
Administrators - Full Control
Authenticated Users - Full Control
Everyone - Read
If other shares are affected, you must also set permissions for those
shares back to their previous settings.
The file permissions for the Sysvol folder may or may not be affected.
Their default settings are as follows:
Administrators - Full Control
Authenticated Users - Read, Read and Execute, and List Folder
System - Full Control
Server Operators - Read, Read and Execute, and List Folder
These permissions are set for the %SystemRoot%\SYSVOL folder and are marked
as inherited (they are checked but dimmed) for the
%SystemRoot%\SYSVOL\Sysvol folder.
Reference:
312031: Using the Symantec W32.Nimda.A@mm Virus Removal Tool Affects the
Sysvol and Netlogon Share Permissions
http://support.microsoft.com/kb/312031/en-us
Thanks & Regards,
Ken Zhao
Microsoft Online Support
Microsoft Global Technical Support Center
Get Secure! - www.microsoft.com/security <http://www.microsoft.com/security>
====================================================
When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from your issue.
====================================================
This posting is provided "AS IS" with no warranties, and confers no rights.
--------------------
| From: "SJMP" <sjmp@xxxxxxxxxxxxxxxx>
| Subject: SYSVOL/NETLOGON visibile by ALL USERS
| Date: Mon, 17 Sep 2007 14:41:17 -0400
| Lines: 6
| MIME-Version: 1.0
| Content-Type: text/plain;
| format=flowed;
| charset="iso-8859-1";
| reply-type=original
| Content-Transfer-Encoding: 7bit
| X-Priority: 3
| X-MSMail-Priority: Normal
| X-Newsreader: Microsoft Windows Mail 6.0.6000.16480
| X-MimeOLE: Produced By Microsoft MimeOLE V6.0.6000.16480
| Message-ID: <#3fKcpV#HHA.4784@xxxxxxxxxxxxxxxxxxxx>
| Newsgroups: microsoft.public.windows.file_system
| NNTP-Posting-Host: gw.greenbriarequity.com 67.151.224.82
| Path: TK2MSFTNGHUB02.phx.gbl!TK2MSFTNGP01.phx.gbl!TK2MSFTNGP05.phx.gbl
| Xref: TK2MSFTNGHUB02.phx.gbl microsoft.public.windows.file_system:1529
| X-Tomcat-NG: microsoft.public.windows.file_system
|
| How come anyone, even non authenticated users can see the SYSVOL and
| NETLOGON folders? I just tested this from a non-domain machine and not
only
| was I able to view it, but I was able to edit the logon.bat in sysvol.
|
| HELP this is very scary!!!!!
|
|
.
- Follow-Ups:
- RE: SYSVOL/NETLOGON visibile by ALL USERS
- From: "Ken Zhao [MSFT]"
- RE: SYSVOL/NETLOGON visibile by ALL USERS
- References:
- SYSVOL/NETLOGON visibile by ALL USERS
- From: SJMP
- SYSVOL/NETLOGON visibile by ALL USERS
- Prev by Date: Question about desktop behaviour
- Next by Date: Re: Question about desktop behaviour
- Previous by thread: SYSVOL/NETLOGON visibile by ALL USERS
- Next by thread: RE: SYSVOL/NETLOGON visibile by ALL USERS
- Index(es):
Relevant Pages
|
