Security Basics mailing list archives
RE: Allowing Non admin users to install approved software
From: "Laundrup, Jens" <Jens.Laundrup () METROKC GOV>
Date: Tue, 17 Oct 2006 15:24:03 -0700
Do not! If they would like a program installed, have them send you an e-mail. Then you publish the program to the user. They log out and then back in and the program will install. This way you retain control whilst they get the program they wish. Since you are only allowing them programs that are on your "approved" list, then just make sure you have a valid msi for each and make very sure that you are covering the programs in your patch management tool. Jens -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Gary Collis Sent: Tuesday, October 17, 2006 1:30 PM To: security-basics () securityfocus com Subject: Allowing Non admin users to install approved software List, How can I allow non admin/power users in a w2k domain, using XP machines to install software that is approved by IT, whilist maintaining some degree of security and control over what is installed? Any suggestions would be greatly appreciated, Thanks ------------------------------------------------------------------------ --- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ------------------------------------------------------------------------ --- --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- Allowing Non admin users to install approved software Gary Collis (Oct 17)
- Re: Allowing Non admin users to install approved software Saqib Ali (Oct 17)
- RE: Allowing Non admin users to install approved software Duncan McAlynn (Oct 18)
- Re: Allowing Non admin users to install approved software Jon Wallace (Oct 18)
- <Possible follow-ups>
- RE: Allowing Non admin users to install approved software Laundrup, Jens (Oct 17)
- RE: Allowing Non admin users to install approved software Isaac Van Name (Oct 18)
- RE: Allowing Non admin users to install approved software Scott Ramsdell (Oct 17)
- Re: Allowing Non admin users to install approved software Saqib Ali (Oct 17)