In-Reply-To: <[EMAIL PROTECTED]>
All, something to make you all feel better. I do this to all of my servers, but had neglected to do to my own workstation....duhhh.... There are several .exe's within the /winnt and /system32 directories that I typically remove administrator and system access to (in fact all but 1 user), I give just a local admin account, that I would be using when I log onto then server for maintenance purposes, full control. cmd.exe is one of those services. I have no reason for allowing the system to use this application, and quite frankly can't think of too many situations where the system will need this access either. It is a security issue. And a convenience issue as well, I guess. However with this change made, and with scripts allowed, the page is useless, it does nothing... A fix.. No.. But a good practice. IMHO. Chad >Received: (qmail 18483 invoked from network); 7 Mar 2002 19:56:17 -0000 >Received: from outgoing2.securityfocus.com (HELO outgoing.securityfocus.com) (66.38.151.26) > by mail.securityfocus.com with SMTP; 7 Mar 2002 19:56:17 -0000 >Received: from lists.securityfocus.com (lists.securityfocus.com [66.38.151.19]) > by outgoing.securityfocus.com (Postfix) with QMQP > id 7A9CF8F2C0; Thu, 7 Mar 2002 12:48:03 -0700 (MST) >Mailing-List: contact security-basics- [EMAIL PROTECTED]; run by ezmlm >Precedence: bulk >List-Id: <security-basics.list-id.securityfocus.com> >List-Post: <mailto:security- [EMAIL PROTECTED]> >List-Help: <mailto:security-basics- [EMAIL PROTECTED]> >List-Unsubscribe: <mailto:security-basics- [EMAIL PROTECTED]> >List-Subscribe: <mailto:security-basics- [EMAIL PROTECTED]> >Delivered-To: mailing list security- [EMAIL PROTECTED] >Delivered-To: moderator for security- [EMAIL PROTECTED] >Received: (qmail 11220 invoked from network); 6 Mar 2002 18:12:
