Re: Securing a Windows XP Workstation

From: Kerry Brown (kerry_at_kdbNOSPAMsystems.c*o*m)
Date: 02/08/05

Next message: Bill Lehman: "Re: Roaming Outlook Xp"
Previous message: Eldon: "RC1 will remove "Administrators" from "Act as part of operation sy"
In reply to: Cary Kataoka: "Securing a Windows XP Workstation"
Next in thread: Bob Hollness: "Re: Securing a Windows XP Workstation"
Messages sorted by: [ date ] [ thread ]

Date: Mon, 7 Feb 2005 22:12:30 -0800

Why not just use EFS to encrypt the private data?

Kerry Brown
KDB Systems

"Cary Kataoka" <caryk@cjrk.com> wrote in message
news:%23LrPRqZDFHA.1012@TK2MSFTNGP14.phx.gbl...
> Hi.
>
> Tried posting this to the XP group, but did not receive any response, so
> I'm
> trying this one.
>
> I am attempting to secure a XP workstation connected to a 2003 Server
> based
> domain. The workstation (belonging to the CEO) has private information
> that
> should not be accessible by anyone including the network administrator. I
> have disabled remote desktop and have added the key
> System\CurrentControlSet\Services\LanManServer\Parameters\AutoShareWks=0
> to
> HKLM. I have also disabled the remote registry service. Further, I have
> removed all domain users except for the local user from local users and
> groups (specifically, I removed domain admins from the local administrator
> group).
>
> I would like some further information: A.) Could these settings be
> over-ridden via GPO? B.) Could these settings be modified if remote
> network
> profile is being used and the user is logging into different workstations
> with the same account?
>
> Thanks in advance for any advice.
>
> Cary Kataoka (caryk@cjrk.com)
> CJRK Computer Consulting Inc.
>
>
>

Next message: Bill Lehman: "Re: Roaming Outlook Xp"
Previous message: Eldon: "RC1 will remove "Administrators" from "Act as part of operation sy"
In reply to: Cary Kataoka: "Securing a Windows XP Workstation"
Next in thread: Bob Hollness: "Re: Securing a Windows XP Workstation"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

Securing a Windows XP Workstation
... I am attempting to secure a XP workstation connected to a 2003 Server based ... I have also disabled the remote registry service. ... removed all domain users except for the local user from local users and ... Could these settings be modified if remote ...
(microsoft.public.windows.server.general)
Re: On classifying attacks
... A remote exploit requires that a local user run an ... double-clicked does not have a vulnerability. ... This is no different than if I handed you a disk, ... Would you call this a remote ...
(Bugtraq)
Re: Securing a Windows XP Workstation
... they could be overwritten by a GPO. ... The benefit of PGP is that the keys can be backed up. ... > I am attempting to secure a XP workstation connected to a 2003 Server ... > removed all domain users except for the local user from local users and ...
(microsoft.public.windows.server.general)
Re: On classifying attacks
... >> But is this a remote exploit? ... > unless a local user runs an executable. ... > This should be classified as a remote vulnerability. ... local users make a decision to trust something (data in this case, ...
(Bugtraq)
Re: XP on NT Domain - Trust Failure
... > I have an XP workstation, a member of a random workgroup ... > local user with the same username as a legitimate domain ... > box passes my local logon info to the Domain Controller. ...
(microsoft.public.windowsxp.security_admin)