|
Posted by on October 8, 2005, 10:54 am
If you were Registered and logged in, you could reply and use other advanced thread options
Hello !
A) How do i prevent a non Guest user to access the Shell by
the following metods?
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
- By using Ctrl+Alt+del combination.
(to invoke a new process)
- from Start->Run
- invoke C:\WINDOWS\cmd.exe from IE URL field.
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
B) How do i prevent a non Guest user to invoke certain
commands (say for ex a defined set) considering the
user now `has managed=B4 to break into the shell:
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
- ipconfig, net, regedit etc...
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
Thanks for any enlightenment, tips,
kave
|
|
Posted by Roger Abell [MVP] on October 8, 2005, 11:05 am
If you were Registered and logged in, you could reply and use other advanced thread options
The answer depends on the OS.
Use a combination of group policy settings, NTFS permission
restrictions on the executables, and software restriction policy.
If you are looking for a water-tight "kiosk" it is surprisingly more
difficult that one would expect unless they are being resticted to
only one application that has no way to escape to shell/cmd and
that can be used as replacement for the Explorer shell.
Hello !
A) How do i prevent a non Guest user to access the Shell by
the following metods?
============================================================
- By using Ctrl+Alt+del combination.
(to invoke a new process)
- from Start->Run
- invoke C:\WINDOWS\cmd.exe from IE URL field.
============================================================
B) How do i prevent a non Guest user to invoke certain
commands (say for ex a defined set) considering the
user now `has managedī to break into the shell:
===========================================
- ipconfig, net, regedit etc...
===========================================
Thanks for any enlightenment, tips,
kave
|
| Similar Threads | Posted | | Preventing Access to Network Printers by Computer | July 11, 2006, 2:54 pm |
| Preventing Log Evasion in IIS | August 28, 2005, 10:02 pm |
| preventing information theft | July 3, 2008, 12:05 pm |
| Preventing rootkits from getting installed on servers | November 10, 2005, 3:18 pm |
| Preventing Kerberos Ticket Expiration | December 26, 2007, 11:23 am |
| Virus preventing registry editor from opening? | July 17, 2005, 9:08 pm |
| preventing Vista Firewall from beeing disabled by users | August 30, 2007, 4:00 pm |
| pki - CRL questions | November 13, 2006, 10:15 am |
| Newbie questions... | March 29, 2006, 2:13 pm |
| Registry questions | February 22, 2007, 2:33 pm |
|
XML site map