Re: Prevent use of Open Share

["Alex Harasic Gil" <alharasic () mi cl>]

So what you mean is to use a centralized File Server?


Alex S. Harasic

On Thu, 25 Aug 2005 08:54:38 -0400
 Mike Fetherston <mike_sha () shaw ca> wrote:
> Uninstall F&P Sharing and throw a GP at the users that 
> prevents them from
> using most "dangerous" control panel items.  In a LAN of 
> 8000 computers, I
> don't see a need to open shares up on the clients, this 
> should all be done
> on the server.
>
> Mike Fetherston
>
> > -----Original Message-----
> > From: Alex Harasic Gil [mailto:alharasic () mi cl]
> > Sent: Wednesday, August 24, 2005 2:56 PM
> > To: security-basics () securityfocus com
> > Subject: Prevent use of Open Share
> >
> > Hi, the company I'm working for has over 8,000 PCs
> > connected to the corporate LAN. We need to find a way to
> > prevent users from creating Open Shares with full-access
> > permissions on the Windows 2000 network.
> >
> > Basic users, don't know how to apply control access to 
> > the
> > shares they're sharing. So, there's also an education
> > process we need to carry on.
> >
> > But for a first instance, how can I do to lock the use 
> > of
> > public open shares on the windows 2000 Domain? Domain
> > Policy, GPO?, is there any way to detect the use of them
> > other than scanning for open shares?.
> >
> > Regards
> >
> > Alex S. Harasic
> > alharasic () mi cl