Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: What is the best way to lock a local box on a network?

from [Ramsdell, Scott] Network Security [Permanent Link]
Subject: RE: What is the best way to lock a local box on a network?
Date: Thu, 30 Aug 2007 09:27:43 -0400 
Hi Martin,

Because AD will elevate the user's rights during installation for
assigned and published apps, you can:
1. remove the user from the local admins group, leaving them as a user
2. assign or publish the apps through AD
3. use WSUS to deliver approved (and vetted) patches

Kind Regards,
Scott Ramsdell

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
On Behalf Of Martin Tran
Sent: Wednesday, August 29, 2007 10:15 AM
To: security-basics@securityfocus.com
Subject: What is the best way to lock a local box on a network?

Hi guys, I was wondering the best way to lock a local box.  Things such
as,
1. Can't install unauthorized programs.
2. But can install programs/softwares on a list that is acceptable.

I went to gpedit.msc and gone through the options, but everything
seems really cut and dry.  For example, If I was to enable an option
to stop users from installing unwanted software and user tries to do
windows update, it wasn't allowed to proceed with the process saying
they needed administration rights to the box.

If you guys can shine some light as I continue to do some trial and
error on this test box, any suggestions would be great and
appreciated!

-- 
Martin Tran
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Question about Active Directory and last time user has logged on, jenna
Next by Date:  Re: Securing Development in a production environment, Ansgar -59cobalt- Wiechers
Previous by Thread:  What is the best way to lock a local box on a network?, Martin Tran
Next by Thread:  RE: What is the best way to lock a local box on a network?, peter.schaub
Indexes:  [Date] [Thread] [Top] [All Lists]