Re: SBS shares. Theres no security

Go into the event log on the server, open up the security tab, and montor when you boot that system.

It has to be authenticating. You have a permission being granted.

For those file shares on the server, list the permissions on that share?



Jonathan Davey wrote:
Hi Leythos,

No, the rogue PC does not have a "local" user account in common with SBS, nor a domain nor Device Account. It is a rogue in every sense of the word.

Guest..... hmm now thats highly unlikely, let me check, nope its disabled, default setting.

"Leythos" <void@xxxxxxxxxxx> wrote in message news:2cgQf.11351$g91.7142@xxxxxxxxxxxxxxxxxxxxxxxxx
In article <uO$XkZERGHA.4696@xxxxxxxxxxxxxxxxxxxx>, me@xxxxxxxxxxx
says...
Ive set up a default SBS install, except with a single nic

Ive placed a rogue PC on the network, which has no credentials (user,
computername, domain etc) to access SBS, the rogue PC network folders are
populated with SBS file shares!!!!!! AND I can make alterations to 80% of
those shares including DELETE of user added folders and files.

Can someone tell me what on earth is going on please. This is a pull the
plug senario!
Well, it would seem that you are using the same user account name and
the same password on that computer as you have in the domain.

Most administrators use uncommon/strict passwords.

Maybe you misunderstand how Windows networking permissions work - if you
have a computer with a user/password and connect to it from another
computer using the same user/password, it will authenticate as that
user/password and allow the same access as if you were the user.

So, if on the SBS Server you setup shares, give a quality password to
the administrator account, give quality passwords to the other accounts,
now you take a PC that doesn't have the same user/password combination
as any of those SBS accounts, you won't be able to access the shares at
all.

If you can access them with a unknown user account, then it means you've
enabled the GUEST account and we all know that's a mistake no matter how
you look at it.

--

spam999free@xxxxxxxxxx
remove 999 in order to email me


.

Relevant Pages

  • RE: Getting alot of these emails
    ... Thank you for posting in the SBS newsgroup. ... this issue can occur if your SBS 2003 server is ... Disable the Guest account in your SBS 2003 server and enable Stronger ... Microsoft is providing this information as a convenience to you. ...
    (microsoft.public.windows.server.sbs)
  • Re: Full name changes to Username and some open files lose connection
    ... > Thank you for posting to the SBS Newsgroup. ... > the server or client side? ... double click the user account. ...
    (microsoft.public.windows.server.sbs)
  • RE: Help .. Small Business Server Error may be DNS ?
    ... Thank you for posting in SBS newsgroup. ... issue can occur when you restart the SBS 2003 server. ... resource from the network with a bad password or an account that was locked ...
    (microsoft.public.windows.server.sbs)
  • Re: connect computer setup fails
    ... The administrator account you use to login - this is an account with ... Les Connor [SBS MVP] ... > willswing01 is the SBS server. ...
    (microsoft.public.windows.server.sbs)
  • Re: SMB2K3 Prem: Setup with Dynamic DNS Service TZO
    ... SBS 2003 DDNS and Email Setup Procedure... ... DDNS account so that you can always have access to your server, ... The preferred network setup is 2 NICs in the SBS server plus a router. ...
    (microsoft.public.windows.server.sbs)
Loading