Not sure why you'd really want to; why do you have users logging on to
servers? If you have people with access to server FS you're asking for
trouble.
If this is a citrix/TS environment then restrict what they can see and do
via group policy so that the sys drive is hidden. If it is TS/Citrix there
re loads of template files around.
You can also check out the NIST guides for securing your OS
On 15/01/2010 12:11, in article #$,
"Cipher" <> wrote:
> Hello to everybody,
>
> We have in our infrastrustrure windows 2003 SP2 boxes and for security
> reasons we're thinking of removing the local group "USERS" from C:\ .
> We don't want "Authenticated Users" because of their membership in
> "Users" group,
> to have read/write access to system partition.
> This is unacceptable for a server-production environment.
> However, this action might spawn huge problems.
> Does anyone knows if it is safe to proceed to this action or other
> alternatives (modify NTFS perms?) that may help us?
>
> Thanks in advance.
> Cipher*
>
>
>
|
Similar Threads
Linear Mode
