发信人: williamlong()
整理人: williamlong(2002-12-01 16:43:37), 站内信件
|
We have seen a serious problem here on a standalone server.
Scenario : NT Server 4.0 SP5 standalone server - guest enabled without
password.
Problem definition : Users who were deleted still have access to the s
hares
shared as "Network-Full control" and NTFS permissions for "Everyone-fu
ll
control". This is serious as the connections are possible without pass
word
for these users.
Reproducing the problem :
Share a directory "XYZ" as "Myshare" with following permissions :
NTFS : administrators Full control; NETWORK Full control
Share : NETWORK Full control
Create a user "TEST" on the server with a password. He is member of
only
user group.
Try to connect to "Myshare" share of this server from any NT machine
as
user "TEST". It asks for the password and then connects and has full
control.
Now delete user TEST.
Try to connect to myshare of the server from any other NT machine as u
ser
"TEST". It doesn't ask for any password and It connects and has full
control over Myshare.
Restarting the server still allows connection as TEST without password
to
Myshare with full control. Also, other guest users don't have any acce
ss.
Only users who were earlier defined and are deleted now can access th
is
share and that too without password!
Can you please explain this and suggest a solution to stop it.
Thanks and regards.
Jitendra Sangharajka
Lead System Administrator
Infosys Technologies Limited
IS - KEONICS
**: [email protected]
* Work : (80) 8520261 Ext. 1105
* Res. : (80) 6659196
--
☆ 蓝色月光 ☆ http://williamlong.163.net
※ 来源:.月光软件站 http://www.moon-soft.com.[FROM: 61.128.129.3]
|
|