Security Basics mailing list archives
RE: preventing run-as option
From: "Scott Ramsdell" <Scott.Ramsdell () cellnet com>
Date: Fri, 6 Oct 2006 15:07:32 -0400
Vijay, You can disable Run-As through GPO. You can also restrict your users to login to only their own machine through AD Users & Computers. In addition, you should be able to change your proxy to grant access based on source IP and assign DHCP reservations or static IPs to your users. Your users will have a much harder time sharing IPs than passwords. Best Regards, Scott Ramsdell -----Original Message----- From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of vijay shetti Sent: Friday, October 06, 2006 2:16 AM To: security-basics () securityfocus com Subject: preventing run-as option hello all!!! In my company we have domain based environment...In our proxy access permissions are given based on the name of the user and only few users are given rights to view a set of sites like email sites... For example employee A is given the permission and B does not have that.What B does is that he runs Internet explorer using run-as option and gives A's credentials...This way he is able to surf websites that he is not given permission to. Is there any option using which I can disable run-as option... regards, Vijay.... ------------------------------------------------------------------------ --- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ------------------------------------------------------------------------ --- --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- preventing run-as option vijay shetti (Oct 06)
- Re: preventing run-as option Hylton Conacher(ZR1HPC) (Oct 10)
- RE: preventing run-as option Murda Mcloud (Oct 10)
- RE: preventing run-as option Dubber, Drew B (Oct 10)
- Re: preventing run-as option MaddHatter (Oct 10)
- Re: preventing run-as option MPope (Oct 11)
- RE: preventing run-as option Buozis, Martynas (Oct 11)
- Re: preventing run-as option MaddHatter (Oct 10)
- RE: preventing run-as option Dixon, Wayne (Oct 10)
- Re: preventing run-as option Clinton E. Troutman (Oct 10)
- <Possible follow-ups>
- RE: preventing run-as option Scott Ramsdell (Oct 10)
- RE: preventing run-as option Lariviere, Stephen (Oct 10)
- RE: preventing run-as option Lariviere, Stephen (Oct 10)
- Re: preventing run-as option Clinton E. Troutman (Oct 11)
- Re: preventing run-as option Ansgar -59cobalt- Wiechers (Oct 11)
- RE: preventing run-as option Murda Mcloud (Oct 12)
- Re: preventing run-as option nikhil (Oct 11)
- RE: preventing run-as option Lariviere, Stephen (Oct 13)
- Re: preventing run-as option Ansgar -59cobalt- Wiechers (Oct 13)
- RE: preventing run-as option Murda Mcloud (Oct 15)