Full Disclosure mailing list archives
RE: W2k users, local admin rights and GPOs
From: "Sergey V. Gordeychik" <gordey () infosec ru>
Date: Thu, 30 Oct 2003 13:52:04 +0300
From: Exibar [mailto:exibar () thelair com]
What you do is first, delete the policies from the registry, then deny everyone (except for a locally created user) access to the policy key. You'll see the failures in the event log when a new policy attempts to
get >written. Viola! no more policies.... But if I define registry keys permissions in GPO? It's works? Hm... I'll try it. One more question. Can any body provide examples of wide-used software (client-side software I mean) which doesn't work without administrative rights? _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- W2k users, local admin rights and GPOs James Exim (Oct 29)
- Re: W2k users, local admin rights and GPOs Exibar (Oct 29)
- Re: W2k users, local admin rights and GPOs yossarian (Oct 29)
- <Possible follow-ups>
- RE: W2k users, local admin rights and GPOs Sergey V. Gordeychik (Oct 29)
- RE: W2k users, local admin rights and GPOs Sergey V. Gordeychik (Oct 29)
- Re[2]: W2k users, local admin rights and GPOs 3APA3A (Oct 30)
- RE: W2k users, local admin rights and GPOs Sergey V. Gordeychik (Oct 30)
- Re: W2k users, local admin rights and GPOs Exibar (Oct 29)