It's just treating the PC as a terminal server. My first thoughts are that this could only be an issue where local resources are not adequately secured or where you don't trust your admins. In either of those scenarios, you have bigger fish to fry! The only place I can see this being a problem is in very high security environments where a user may be logged in and locked while accessing highly classified data. An admin logging in could perhaps memory scrape and steal this (or steal via firewire ..!). But then both physical and logical access in that environment should be tightly controlled too! a
________________________________ From: Steven M. Caesare [mailto:scaes...@caesare.com] Sent: 08 September 2010 14:01 To: NT System Admin Issues Subject: RE: Mac and Windows mix I'm of two minds on this... in some cases it might be useful, but it would obviously have to be logged as a security event. -sc From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Wednesday, September 08, 2010 6:26 AM To: NT System Admin Issues Subject: Re: Mac and Windows mix Windows 7 has the best of both worlds, IMO. As an admin, you can gain access to a computer that is locked by logging in as a different user. You can do this without logging the other person off, and without violating their session. As Ken mentions, this maintains non-repudiation. ASB (My XeeSM Profile) <http://XeeSM.com/AndrewBaker> Exploiting Technology for Business Advantage... On Wed, Sep 8, 2010 at 1:18 AM, Ben Scott <mailvor...@gmail.com> wrote: On Tue, Sep 7, 2010 at 9:11 PM, sdewilliman <sdewilli...@g2.com> wrote: > Or, without editing the plist you can walk up to any Macs with password > protected screensaver on, enter the admin pswd & boom there's the user's > desktop at your disposal. I wish Windows had that option. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ************************************************************************************ WARNING: The information in this email and any attachments is confidential and may be legally privileged. If you are not the named addressee, you must not use, copy or disclose this email (including any attachments) or the information in it save to the named addressee nor take any action in reliance on it. If you receive this email or any attachments in error, please notify the sender immediately and then delete the same and any copies. "CLS Services Ltd × Registered in England No 4132704 × Registered Office: Exchange Tower × One Harbour Exchange Square × London E14 9GE" ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin