Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Securing workstations from IT guys

from [Vandenberg, Robert] Network Security [Permanent Link]
Subject: RE: Securing workstations from IT guys
Date: Tue, 27 Nov 2007 09:18:25 -0800 
 
Those are good points.

I would recommend that you put in a keystroke logger program with the
written approval of your upper management on the PCs in question and
then download the logs each day.  That way you are able to create a
forensics "e-Trail" that can be used to confront/counsel/etc. them.  I
would also make sure that you look at your documenation and ensure that
each IT person has signed a document stating that they will not use
their abilities improperly.  Combine those two and you have a means of
pursuing them legally.


-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
On Behalf Of Lim Ming Wei
Sent: Monday, November 26, 2007 7:14 PM
To: 'WALI'; 'security-basics'
Subject: RE: Securing workstations from IT guys

Use encryption program to encrypt those files.  Password function in the
normal MS Word application does not help.  If you have problem
installing the program.  You might want to consider saving the file in
an alternative storage media such as a USB Thumb drive. 

-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com]
On Behalf Of WALI
Sent: Monday, November 26, 2007 2:24 AM
To: security-basics
Subject: Securing workstations from IT guys

It's a catch 22 situation and I need to make our Windows Xp workstations
appropriately secure. Secure from rogue Helpdesk personnel as well as
network admins.
The HR guys are complaining that their 'offer' letters to prospective
employees and some of the CVs that they recieve are finding their way
into unwanted hands. I suspect both HR application vulnerability, for
which I am undertaking some vulnerability analysis but I also need to
protect the PCs that belong to Dept. of HR employees from rogue IT guys.

Here are the basics of what I intend to do:
1. Advise all HR users to shutdown their PC before they leave for the
day.
2. Change all Local Admin passwords so that even IT helpdesk/other
doesn't know them.
3. Advise HR guys to assign passwords to their excel/word files.
3. Do not create shares off c drive giving 'everyone' access.

But...because they are all connected to Windows 2003 domain, I still
risk someone from domain admin group to be able to start C$/D$ share and
browse into their c: drive, what should I do?

Also, it's easy to crack open xls/doc passwords, what else can be done?

Alternatively, Is there an auditing on PC that can be enabled to
track/log incoming connections to C$ and pop up and alert whenever
someone tries it out from a remote machine.

Pls advise!!
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: hax.tor, Robert Larsen
Next by Date:  Re: Securing workstations from IT guys, Brad Bendily
Previous by Thread:  Re: Securing workstations from IT guys, Micheal Espinola Jr
Next by Thread:  RE: Securing workstations from IT guys, Nick Vaernhoej
Indexes:  [Date] [Thread] [Top] [All Lists]