Security Basics mailing list archives

Alternative to Windows Explorer

From: Locher Thomas <Thomas.Locher () swarovski com>
Date: Tue, 8 Jun 2004 13:28:14 +0200

Hello,

thanks to everybody who answered! In MS Technet is an article that describes
how the explorer can be started with "Run as", but when doing this the
security concept isn't secure anymore... ;-)
PSS ID Number: 225035 - "Secondary Logon (Run As): Starting Programs and
Tools in Local Administrative Context"

Now we are using Total Commander, works fine and can handle UNC - Paths!

Thanks,
Thomas

-----Original Message-----
From: Eric Thirolle [mailto:SecurityFocus () bluegecko com]
Sent: Freitag, 04. Juni 2004 19:48
To: Locher Thomas; security-basics () securityfocus com
Subject: RE: Alternative to Windows Explorer


Litestep is the "longest living Windows Replacement Shell". I don't have
much experience with it, so can't say much specific about it. It would
probably require some education of your users, which is a downside. It is
highly flexible & configurable, so possibly you could create a shell that
approximates Explorer quite closely.

http://lsdocs.shellfront.org/
http://www.litestep.net/

Eric

-----Original Message-----
From: Locher Thomas [mailto:Thomas.Locher () swarovski com]
Sent: Friday, June 04, 2004 12:40 AM
To: security-basics () securityfocus com
Subject: Alternative to Windows Explorer


Dear List,

we are trying to work out a policy, that every admin should be logged on to
his client (WinXP-SP1) with a non-administrative account (smartcard logon)
and start the programs for administrative tasks with the runas - command as
admistrator. That works rather good, the account cannot access our
fileservers and all the other things that can be compromised by a worm or
virus.
There's just one problem, you can't start windows explorer with runas. We
use the internet explorer  (runas with the administrative account) for
managing file servers, but this is rather bad (for example there is no
automatic refresh). Is there an alternative to windows explorer with the
same features? The few i found cannot access the network by typing UNC
Paths, only with mapped drives - they are more useful for local usage.

Best regards,
Thomas


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the
skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the
skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------



________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)

---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

Current thread:

Re: Alternative to Windows Explorer, (continued)
- - - Re: Alternative to Windows Explorer steve (Jun 09)
    - ACL in Linux Marcelo Leão Caffaro (Jun 09)
    - Blocking NetBios Kareem Mahgoub (Jun 10)
    - RE: Blocking NetBios Glen L. Bowes (Jun 11)
    - RE: Blocking NetBios whirlow (Jun 14)
    - RE: Blocking NetBios David Gillett (Jun 11)
    - Re: Blocking NetBios Ryan King (Jun 11)
    - Re: Blocking NetBios Ansgar -59cobalt- Wiechers (Jun 15)
    - RE: ACL in Linux Michael LaSalvia (Jun 11)
- RE: Alternative to Windows Explorer Michael Kallas (Jun 08)
- Alternative to Windows Explorer Locher Thomas (Jun 08)