Security Basics mailing list archives

RE: Allowing Non admin users to install approved software

From: "Laundrup, Jens" <Jens.Laundrup () METROKC GOV>
Date: Tue, 17 Oct 2006 15:24:03 -0700

Do not!  If they would like a program installed, have them send you an
e-mail.  Then you publish the program to the user.  They log out and
then back in and the program will install.  This way you retain control
whilst they get the program they wish.  Since you are only allowing them
programs that are on your "approved" list, then just make sure you have
a valid msi for each and make very sure that you are covering the
programs in your patch management tool.   

Jens 

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Gary Collis
Sent: Tuesday, October 17, 2006 1:30 PM
To: security-basics () securityfocus com
Subject: Allowing Non admin users to install approved software

List,

How can I allow non admin/power users in a w2k domain, using XP machines

to install software that is approved by IT, whilist maintaining some 
degree of security and control over what is installed?

Any suggestions would be greatly appreciated,

Thanks

------------------------------------------------------------------------
---
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic
Excellence 
in Information Security. Our program offers unparalleled Infosec
management 
education and the case study affords you unmatched consulting
experience. 
Using interactive e-Learning technology, you can earn this esteemed
degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
------------------------------------------------------------------------
---



---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence
in Information Security. Our program offers unparalleled Infosec management
education and the case study affords you unmatched consulting experience.
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Current thread:

Allowing Non admin users to install approved software Gary Collis (Oct 17)
- Re: Allowing Non admin users to install approved software Saqib Ali (Oct 17)
  - RE: Allowing Non admin users to install approved software Duncan McAlynn (Oct 18)
- Re: Allowing Non admin users to install approved software Jon Wallace (Oct 18)
- <Possible follow-ups>
- RE: Allowing Non admin users to install approved software Laundrup, Jens (Oct 17)
  - RE: Allowing Non admin users to install approved software Isaac Van Name (Oct 18)
- RE: Allowing Non admin users to install approved software Scott Ramsdell (Oct 17)