Re: AD and hidden admin shares
From: ptwilliams (ptw2001_at_hotmail.com)
Date: 11/15/04
- Next message: ptwilliams: "Re: RID Problems"
- Previous message: ptwilliams: "Re: querying for computers on AD"
- In reply to: Saqib Ali: "AD and hidden admin shares"
- Next in thread: Saqib Ali: "Re: AD and hidden admin shares"
- Reply: Saqib Ali: "Re: AD and hidden admin shares"
- Messages sorted by: [ date ] [ thread ]
Date: Mon, 15 Nov 2004 23:43:57 -0000
Yes. There's a reg key. However this is only a security issue if you don't
trust your admins, have too many users running as administrators, or are
using the same passwords for the non-domain local administrator accounts and
the domain administrator accounts.
These shares are there by design for a reason. They're very handy tools.
Do you really want to get rid of them??
-- Paul Williams http://www.msresource.net http://forums.msresource.net "Saqib Ali" <rumionfire@gmail.com> wrote in message news:%23yokpBzyEHA.804@TK2MSFTNGP12.phx.gbl... Hello All, I have noticed that when a client machine joins the AD domain, the ability to use Simple File Sharing goes away, and the hidden admin shares are available for remote connections (you have to connect to C$, and only local administrators can do it). The worst part is that even the machines that are not in the AD domain can connect to C$ on any machine in the AD domain. This can be serious security issue. Is there a way to stop admin shares from automatically becoming available??? Thanks. Saqib Ali http://validate.sf.net
- Next message: ptwilliams: "Re: RID Problems"
- Previous message: ptwilliams: "Re: querying for computers on AD"
- In reply to: Saqib Ali: "AD and hidden admin shares"
- Next in thread: Saqib Ali: "Re: AD and hidden admin shares"
- Reply: Saqib Ali: "Re: AD and hidden admin shares"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
