Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Office 10 applications & flashdrives can be used to browse restricte

from [Denis Jedig] Network Security [Permanent Link]
Subject: Re: Office 10 applications & flashdrives can be used to browse restricted drives
Date: Fri, 25 Feb 2005 17:59:59 +0100 
Discini, Sonny wrote:

SYMPTOMS
After you establish a group policy to restrict access to a drive by
selecting the Hide these specified drives in My Computer and Prevent
access to drives from My Computer options, you can use a Microsoft
Office program to browse and read the contents of the drive.

I just hope it won't disappoint you in some way, but using a policy setting that would advise Windows Explorer to hide drives from users does not necessarily mean, users can't access the underlying devices anymore.

The setting you used to prevent access is not a security feature but rather a convinience setting. It will always be possible to go to the command shell and view the drives from there. Or to use any third-party file manager (or even the file manager out of Windows NT 4) to bypass the Windows Explorer setting to hide drives.

If you want to _really_ prevent access to data, either use appropriate ACLs (when using fixed drives) or use appropriate third-party-software which will run as a driver and have hooks into filesystem calls in order to *really* prevent acces to unwanted media.

Denis Jedig
syneticon GbR

[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  AW: phpWebSite-0.10.0_exploit, webmaster
Next by Date:  [Full-Disclosure] RE: Firescrolling [Firefox 1.0], Eric McCarty
Previous by Thread:  Office 10 applications & flashdrives can be used to browse restricted drives, Discini, Sonny
Next by Thread:  [Full-Disclosure] [FLSA-2005:2043] Updated zlib package fixes security issues, Marc Deslauriers
Indexes:  [Date] [Thread] [Top] [All Lists]