Will file permissions need to be changed?

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ Security
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - Easy Question: Determining CA Server Role OS: Windows 2003 Server Standard Edition How does one determine the CA type that a server is running? I have tried working with certutil and looking at the Certificates MMC console and can't figure out if this server is installed as an Enterprise CA or a Stand-Alone CA. I'm probably missing a very simple step somewhere. Thanks in advance, Bob Tag: Will file permissions need to be changed? Tag: 65293
  - 2
    - Installing Hotfixes via a VBS Script Does anyone know or have examples on how to install hotfixes via a vbs script. Thanks for any help, Johnnyweb Tag: Will file permissions need to be changed? Tag: 65291
  - 3
    - Microsoft Security Bulletins for 12/14/04 December 14, 2004 Today Microsoft released the following Security Bulletin(s). Note: www.microsoft.com/technet/security and www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details. Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided. Bulletin Summary: http://www.microsoft.com/technet/security/Bulletin/ms04-dec.mspx Important Bulletins: Vulnerability in WordPad Could Allow Code Execution (885836) http://www.microsoft.com/technet/security/Bulletin/ms04-041.mspx Vulnerability in DHCP Could Allow Remote Code Execution and Denial of Service (885249) http://www.microsoft.com/technet/security/Bulletin/ms04-042.mspx Vulnerability in HyperTerminal Could Allow Code Execution (873339) http://www.microsoft.com/technet/security/Bulletin/ms04-043.mspx Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege (885835) http://www.microsoft.com/technet/security/Bulletin/ms04-044.mspx Vulnerability in WINS Could Allow Remote Code Execution (870763) http://www.microsoft.com/technet/security/Bulletin/ms04-045.mspx Re-released Bulletins: Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987) http://www.microsoft.com/technet/security/Bulletin/ms04-028.mspx This represents our regularly scheduled monthly bulletin release (second Tuesday of each month). Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so. If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety (1-866-727-2338). International customers should contact their local subsidiary. -- Regards, Jerry Bryant - MCSE, MCDBA Microsoft IT Communities Get Secure! www.microsoft.com/security This posting is provided "AS IS" with no warranties, and confers no rights. Tag: Will file permissions need to be changed? Tag: 65288
  - 4
    - New MSSecure.XML Version 2004.12.14.0 Now Available MSSECURE.XML Data Version 2004.12.14.0 (for use by MBSA 1.2 and SMS SUS Feature Pack) was last modified today, December 1, 2004, and is now available for all supported languages (English, French, German and Japanese). Today's release contains 5 new bulletins - which are fully supported for MBSA detection and SMS deployment. There are NO unsupported products or Note Messages in today's release. This does not include the re-release of MS04-028 (GDI+) that is not supported for MBSA detection. This release fully supports the following new bulletins: MS04-041 (Wordpad) - 885836 MS04-042 (DHCP) - 885249 MS04-043 (HyperTerminal) - 873339 MS04-044 (LSASRV and Kernel) - 885835 MS04-045 (WINS) - 870736 This release also includes a critical bug fix for MS04-040 to provided SUS Mapping information. This affected customers who used MBSA in conjunction with a SUS server to limit the reported patches to only those items approved on the Microsoft SUS Server. This problem has been corrected in this release. -- Doug Neal [MSFT] dugn@online.microsoft.com This posting is provided "AS IS" with no warranties, and confers no rights. If newsgroup discussion with experts and MVPs is unable to solve a problem to your satisfaction, feel free to contact PSS for the Microsoft Baseline Security Analyzer (MBSA) at the following link: http://support.microsoft.com/default.aspx?scid=fh;en-us;Prodoffer20a This e-mail address does not receive e-mail, but is used for newsgroup postings only. Tag: Will file permissions need to be changed? Tag: 65287
  - 5
    - hijack 69.20... coolwebsearch 2 Just an update. Anyone who gets this may want to consider just blowing away the box. I posted yesterday, got a few suggestions, tried the latest, and nothing worked. THe most interesting read I got here http://cwshredder.net/cwshredder/cwschronicles.html What ever it is I am now of the opin that it can't be removed by any normal uS certified IT guy. You need special skills - a phd in nerd. Thanks for the help - going to reinstall. Tag: Will file permissions need to be changed? Tag: 65286
  - 6
    - hijack 69.20... coolwebsearch 2 Just an update. Anyone who gets this may want to consider just blowing away the box. I posted yesterday, got a few suggestions, tried the latest, and nothing worked. THe most interesting read I got here http://cwshredder.net/cwshredder/cwschronicles.html What ever it is I am now of the opin that it can't be removed by any normal uS certified IT guy. You need special skills - a phd in nerd. Thanks for the help - going to reinstall. Tag: Will file permissions need to be changed? Tag: 65285
  - 7
    - LCS requires a certificate that has a key Hello, I'm trying to create a Connection for my Live Communication Server 2005. But if I choose TLS and not TCP, LCS requires a certificate that has a key My own certificate is a duplicate from the computer-certificate (Windows 2003 Server Standard) I've create the Certificate like the description in Microsoft Deployment Guide "Microsoft Office Live Communications Server 2005 Certificate Configuration" Tag: Will file permissions need to be changed? Tag: 65283
  - 8
    - Publishing a Certifictae Template in AD Hi, I want to publish a Certficate Template in AD but on the template/General Tab the check box is greyed out. This applies to all templates so I can't unpublish existing published certificates. The server is a Domain Controller and I am logging on with e Domain Admin Account. The server is running 2003 Server Standard Edition. Any Ideas would be much appreciated"! Thanks Chris Tag: Will file permissions need to be changed? Tag: 65281
  - 9
    - Strange CA error I managed to produce the first certificate fine through web enrollment. The next one however, complained with this: No certificate templates could be found. You do not have permission to request a certificate from this CA, or an error occurred while accessing the Active Directory. What does this mean? I've already tried the info at this site with no luck: http://support.microsoft.com/?id=811418 Tag: Will file permissions need to be changed? Tag: 65278
  - 10
    - MS Debuts Desktop Search Tool - Reuters Microsoft Debuts Desktop Search Tool Mon Dec 13, 2004 06:40 PM ET http://www.reuters.com/newsArticle.jhtml?type=technologyNews&storyID=7080615&src=rss/technologyNews or http://tinyurl.com/5br6d SEATTLE (Reuters) - Microsoft Corp. (MSFT.O: Quote, Profile, Research) on Monday unveiled a new, preliminary version of its search tool for finding documents, e-mail and other files stored on personal computer hard drives. <snip> Honest, I really like Windows. I started with MSDOS 3.1 and have been upgrading ever since. But with MS's past history with IE & OE and today's internet environment, there is no way I could even think of sticking this thing in my computer. Lance ***** Tag: Will file permissions need to be changed? Tag: 65271
  - 11
    - hijack browser 69.20... Virus/spyware tools seem to have met their match. I've run a dozen tools, have Symantec corp installation, it "pros" to help and nobody can fix it. Has anyone actually ever fixed this without 2 pages of instructions on how to do so? (which don't work). 2k, ie6, all sp's. This is one that hijacks the hosts file. Browser suddenly opens to wherever and so on. Popups too! Very neat. Can anyone tell me how the infection is spread? (You wouldn't believe what my company spends with Symantec!) Tag: Will file permissions need to be changed? Tag: 65268
  - 12
    - CAPICOM and ASP.NET I am developing an ASP.NET application using VB.NET, and need to access a users certificate. I have successfully issued a certificate from our own CA and this can be seen through IE. So far, using CAPICOM 2, I am only returning certificates that are associated with the Web server (W2K3). I have tried setting the <identity impersonate="true"/> in the web.config file as was suggested in another post but this hasn't made a difference. Is there anyway to access the client-side "My" store in order to retrieve the certificate or am I barking up the wrong tree? Any help greatfully received. S Tag: Will file permissions need to be changed? Tag: 65264
  - 13
    - File permissions I have a very old software package that is to be used on 30 lab machines. This is an old authorware 2.1 presentation. When the package is run it creates a directory APW_DATA in the c:\windows directory. not only does this directory have to be there the user running the application must have read and write permissions to this directory. Becuase users only get read permissions by default I have to manually change the permissions on this folder for users to be able to use the software. I want to know if there is a way that I can automate this process. What I have in mind is writing a script that will 1) add a shortcut to the start menu 2) create the APW_DATA folder with read write permissions for all users. I have been unable to figure out how to create or copy APW_DATA with the correct permissions. Is this possable and how can I do it. Thanks in advance. Tag: Will file permissions need to be changed? Tag: 65262
  - 14
    - Inconsistent scan results? Hello! I have a puzzling situation here. Whenever I run Spy Bouncer, I get the following four items: HKEY_LOCAL_MACHINE\Software\Microsoft\Window\CurrentVersion\InternetSettings\P3P\History â??gator.comâ? HKEY_CURRENT_USER\Software\Microsoft\Window\CurrentVersion\InternetSettings\P3P\Hstory â??gator.comâ? HKEY_CURRENT_USER\\Software\Microsoft\Window\CurrentVersion\InternetSettings\ZoneMap\Domain â??gator.comâ? HKEY_CURRENT_USER\\Software\Microsoft\Window\CurrentVersion\InternetSettings\ZoneMap\Domain â??kazaa-lite.comâ?? I am running up to date W2K with SpywareBlaster and Spywareguard running in the background, also up to date. When I scan with Hijack This, Spybot S&D or Ad-Aware, they come up clean, but I always get these four when scanned with Spy Bouncer. My questions are: Are these a threat? Why wonâ??t the other three programs find them? Should I just delete them manually, or ignore them? I have never knowingly installed either Gator or Kazaa. Any input would be greatly appreciated! Tag: Will file permissions need to be changed? Tag: 65261
  - 15
    - Cannot find server / Still have a trojan horse I've posted about this Dell 2400 (XP) before (Dec 9); I've been working on it to remove viruses, adware, etc 'cuz it was loaded with junk and had no AV program installed. I finally got Grisoft's AVG to load. When I first tried to update the definitions, it started then popped up "Virus found!". I ran the scan - it had 28 viruses (removed 27). When I tried to go online after that, I could connect (dial-up), but I couldn't get to a page. A box popped up saying the Internet connection failed. The address showed "res:shdoclc.dll/dnserror.htm" on the Cannot find server page. How can I fix this??? -- Also, the one remaining that couldn't be fixed (deleted) was a Trojan horse - Downloader.VB.S. After searching on Symantec's website, I couldn'd find a fix or reference to it. It was in the file C:\WINDOWS\SYSTEM32\Cip9g.exe. Is this a valid file or just trash?? Is this affecting the Internet? Please help!! Barb Zakrzewski -- Barb Zakrzewski Tag: Will file permissions need to be changed? Tag: 65259
  - 16
    - How to query a dns server? Hi, with nslookup command I want to see that my name is registered with an Ip address as the contact person. what is the command to do this ? thanks !!!! Tag: Will file permissions need to be changed? Tag: 65253
  - 17
    - McAfee self-disables I have Windows XP home edition and Verizon internet with MSN(, which includes McAfee anti-virus. I've had this system for more than 6 months, but just recently, McAfee has taken to dusabling itself with no warning and for no apparent reason. I tried getting help from Verizon/MSN, but they were totally useless. And since it is all bundled together, I can't access any McAfee help directly, it always goes back to Verizon. Can anybody help with the McAfee problem? Why is it doing this and how can I fix it? Thanks. Tag: Will file permissions need to be changed? Tag: 65244
  - 18
    - Reasons and examples for security I am looking for examples to support my case for tighter security. I am looking in the area of having to renew passwords at set time period which is not currently being done. I am also looking to find any supporting arguments for not having all home folders of everyone on the network available to everyone else on the network. Any stories and or arguments that would help my case for stronger security would be appreciated. Thanks, Tag: Will file permissions need to be changed? Tag: 65241
  - 19
    - Decoding Internet headers in email Is any way to translate the SMPT-id or message-id codes to show the real sender, date or time in a faked email? Tag: Will file permissions need to be changed? Tag: 65228
  - 20
    - Smartsecurity Desktop Backgound and Spyware My desktop background is now a big warning sign that goes to the smartsecurity website when clicked on. I have tried everything to get rid of this but it won't work. Adware, spybot etc etc. seems to have removed the spyware but not this. What can I do? Tag: Will file permissions need to be changed? Tag: 65227
  - 21
    - stopping a user from copying files I've been looking for more information on the "full control" permissions option when setting up share permissions on a specific directory or file. I have setup all my users to read/write/modify, but i want to make sure that they cannot copy or move any of their files to another location. Is there anything else i should be configuring to restrict this access. Any help would be most appreciated. Graham Tag: Will file permissions need to be changed? Tag: 65219
  - 22
    - Email content Can't read email content from some senders,for example when I recieve a bill I can't read it,it looks like its encrypted.Even my emails from my personal trainer seem encrypted.Tried to adjust my options but doesn't work. Tag: Will file permissions need to be changed? Tag: 65215
  - 23
    - DHCP issues Subnet IP to computer on another domain For the past year our firewall has been managed by a third party, our ISP. About 2 weeks ago, I looked at the DHCP clients that were being issued IP addresses and noticed for a computer that is not on our domain and was in fact on another domain. I deleted it and the next day found that the lease had been renewed. Over the weekend I disconnected the third party firewall and installed an ISA 2004 Server and deleted the computer from the the scope. It has again renewed it's lease. We have several users that use RDP to access our terminal server and we have an Exchange 2003 server with POP3. I have checked and none of our users are logging in from a computer with this particular name or from that domain. Have we been HACKED or is there another explanation? -- Many thanks, Bill Tag: Will file permissions need to be changed? Tag: 65209
  - 24
    - Looking for information I have been looking and looking for information about what are the laws on recovering lost passwords at Microsoft. I know there are tools and techniques are available but in a public forum that I moderate we don't allow these tools to be discussed for security reasons. I am just trying to come up and find a policy that Microsoft lists in general for all versions of Windows and not specific to an operating system so we don't get into anything illegal. If I can find this list and follow it then it will be a big help. I have even tried visiting http://www.microsoft.com/security/default.mspx but cannot seem to find any information. Any suggestions? Tag: Will file permissions need to be changed? Tag: 65208
  - 25
    - Best Practice for User Accounts Afternoon all, I'm having a debate with a friend regarding best practices for old user accounts. He's insisting that old user accounts should be deleted ASAP and that there is MS documentation to that effect. If anyone knows of this documentation, could you please point it out to me? In my opinion, the user account should be just disabled and not deleted. If the account is deleted then all audit trails will be deleted also, and if the the data is required to be retained for any number of years, it will also be lost. Sure the account cna be re-enabled, but if someone has access to do that, then they also have access to recreate an account also. Thanks in advance for any input (and location of the MS document that talks about this, if there is one) Tag: Will file permissions need to be changed? Tag: 65206
- Next
  - 1
    - Can't access secure websites... I have an IBM PC. My subscription to Norton ran out. So I uninstalled it and bought Anti-Virus 2005 and installed that. Now, when I try to access any secure website I get the message that that page cannot be displayed...cannot find server. Do you guys think this is an XP thing? or a Norton thing? I've tried changing the security settings to no avail. I have a guy coming out tomorrow to the house @ $55 per 1/2 to try to help. Can you guys help?? Please!! Thank you. Amy Tag: Will file permissions need to be changed? Tag: 65197
  - 2
    - PEAP Radius steps with user and machine authetication Environment: Supplicant: XP SP2, Authenticator: Ethernet 10/100 switch Aujthetication Server: IAS Protocol: PEAPv0 I would to understand if in that environment when MACHINE AUTH is enabled either in 802.1X client and in the Radius server, the RADIUS ACCESS ACCEPT message happens only after the USER is authenticated, that means that in the first phase of the process when the MACHINE AUTH finish, the server doesn't send this RADIUS message until the USER is authenticated. This is what is happening and I would like to understand if it is normal because I have seen other Radius implementations that send RADIUS ACCESS ACCEPT message either after the MACHINE AUTH as the USER AUTH Tag: Will file permissions need to be changed? Tag: 65196
  - 3
    - Difference in authentication between using IP address and DNS name Can anyone point me in the right direction to understand this problem. What is the difference between accessing a web-site, POP /smtp email account, or network share using the IP address (10.1.1.1) vs it's DNS name site.domain.com. We have a web site that if you browse to it using 10.1.1.1 it will ask you for a username and password. If you browse to site.domain.com, you get access without being prompted for username. Another problem, In outlook if you put your smtp and pop3 addresses as IP addresses, you get access everytime with no problem (username & password saved). If you use the fully qualified name, it does not let you access. And this is different pc to pc. There is probably a white paper somewhere that explains it all. Thanks, Tag: Will file permissions need to be changed? Tag: 65190
  - 4
    - PRINCE A FAMILY VIRUS My Computer reported a virus thread today after scanning entire system with CA etrust antivirus. All effort to deploy cleaning utilities failed. your immediate response will be highly appreciated. musa Tag: Will file permissions need to be changed? Tag: 65188
  - 5
    - .dll won't register I'm trying to use the following fix: regsvr32.exe C;\WINNT\msjtes40.dll BUT, when I put in the string I get this Message: "LoadLibrary(C:\WINNT\system32\msjtes40.dll) failed. The specified Module can not be found." How can this be fixed ? Thanks. Tag: Will file permissions need to be changed? Tag: 65185
  - 6
    - local policy of this system does not permit you to logon interacti I just installed a win 2k3 server as domain controller. Had no problem joining the workstations to the domain, but when they try to logon as a user i get"The local policy of this system does not permit you to logon interactively" these are just regular domain user I don't belive they need to logon interactivly. I can logon as administrator but when I give the user admin rights they still can not logon. there are no group, policies defined that can explain this. Anybody have any Ideas. Thanks in advance Tag: Will file permissions need to be changed? Tag: 65183
  - 7
    - XPsp2 and web-enrollment-pages I've just installed the windowsXP servicepack2 I connect to my certification authority's web-enrollment-pages to download an authentication certificate. So i select a CSP for smartcards and push the button, but after that the page returned me this error: "the operation requires a smart card, but no smart card is currently in the device" (error 0x8010000C - SCARD_E_NO_SMARTCARD)". Of course the smart card is inside its reader and the reader is correctly connected to my PC. Before i installed the SP2 everything worked correctly. Help me! Mariano Tag: Will file permissions need to be changed? Tag: 65175
  - 8
    - SPAM test Hi all, IÂ´m testing a ANTI-SPAM software and want to receive some SPAM to fine tune it. Is there some SPAM test software to gererate SPAM to my email? Thanks Tag: Will file permissions need to be changed? Tag: 65174
  - 9
    - Mysterious Activity> Okay I am losing it- C:\ drive on my Windows 2003 Server is partioned to 8.5GB with approx 8.15GB usable disk space, This server runs just about every application Exchange 2003, SQL2000, Veritas 9.0, IIS program files and data files are installed on the D:\ drive of the server. When I highlight all the folders and files located on the C:\ drive the OS calculates it to be under 4GB, however when I look at Free space I only see 649MB !! When the entire drive is 8.5GB The pagesys file resides on the D:\ drive. Folders are setup to view all files including system and hidden files. I have used just about every third party application to view the directory size I cant seem to find where the other 3.5GB is hidden Any comments/suggestions greatly appriciated- -- Tag: Will file permissions need to be changed? Tag: 65164
  - 10
    - Running Programs from remote shares I have a windows 2003 active directory that stores factulty files. We also have some very old software (pre 95) that I want to make available via a share on the server. The software is simply a very old authorware presentation with many associated video files. My problem is that I am only able to run these programs from the share from an administrator account. Is it possible to allow users to run these files from the shares without haveing to map a drive to the share??? Thank you in advance. Tag: Will file permissions need to be changed? Tag: 65157
  - 11
    - Personal Laptops on the network - need reason why not Have a couple of Executives that want to bring in their personal laptops and hook it up to our network. Do not want to allow personal laptops at work, looking for ideas to persuade upper management that this is not a good idea. Any thoughts would be appreciated. Thanks, Keith Tag: Will file permissions need to be changed? Tag: 65156
  - 12
    - Search The Web I've been informed that this is spyware. I can't get rid of it. I have up-to-date Norton Antivirus, updated SP2 and have run fully updated versions of Ad-Aware, Spybot, SpywareBlaster and CWShredder, but still Search The Web persists. I've used System Restore to go back as far as I can and have then turned it off and rerun the anti-spyware programmes - all to no avail. I really don't know what to try next. Any ideas, please? Tag: Will file permissions need to be changed? Tag: 65151
  - 13
    - Incredimail Can't get rid of this. When I try to uninstall, I get a message saying invalid uninstall file. I've been told to install it again and then try uninstalling it, but how would I do that and won't I still be left with the first one installed?? I have updated Norton, SP2 installed and fully updated and I have run Ad-Aware, Spybot, SpywareBlaster and CWShredder, but still can't get rid of Incredimail. Any other suggestions, please? Tag: Will file permissions need to be changed? Tag: 65150
  - 14
    - Which Anti Virus ? Hi all, I've been a fan of Norton for the past 6 years but after several system problems with 3 installs of NIS 2005, I'm beginning to lose faith. Anyone recommend a good alternative that is stable and more importantly, does the job ? Anyone have anything good/bad to say about Kaspersky, Sophos or AVG ? TIA. Regards Colin. Tag: Will file permissions need to be changed? Tag: 65149
  - 15
    - HELP Can't get online virus scans or AVG to work --I'm working on a Dell 2400 computer that was loaded with malware, spyware, etc. There was no sign of antivirus programs, except I did find a reference to McAfee.com with a couple of files in it (via Windows Explorer), but I didn't see any actual program there. I finally managed to get AdAware on by burning a CD using a different computer then running the CD on this Dell computer. I was able to download Spybot on the Dell.- I was able to download Grisoft's AVG virus program, but the installation kept failing, even when done from a CD. (The CD worked on my own computer, so I know the actual download was good.) I also tried BitDefender ans TrendMicro's programs, but they failed to run online scans. Then I tried to start running virus fixes that I already had on floppies. I started with the Blaster fix; that ran, but then came up with error message (encountered a problem..., Send/don't send to MS). HELP! Any ideas out there?? Should I just go buy Norton and hope the bootup scan works from the CD? Barb Zakrzewski- Barb Zakrzewski Tag: Will file permissions need to be changed? Tag: 65145
  - 16
    - Certificate Server with Other Services Are there any guidelines for what services should or should not be on a Certificate Server? I need to find out if it is advisable or not advisable to have the following services on a Certificate Server: DHCP WINS I am of the opinion that I probably don't want to put any other services on the cert server but I want to find out what other people are doing. TIA Tag: Will file permissions need to be changed? Tag: 65144
  - 17
    - How to use manual certificate selection for 802.1x client ? I am configuraing my 802.1x client on Windows XP Pro SP2 and I do not want to use the "Simple certificate selection" option but would like to select/enforce a particular certificate. How to use manual certificate selection for 802.1x client configuration ? are there any API's that I could use to configure this programatically ? Thanks, Tag: Will file permissions need to be changed? Tag: 65143
  - 18
    - IE 6.0 Detecting Proxies When I open IE it takes forever. In the bottom left side it says detecting proxies. What is this? I have run Spysweeper, Spybot and Hijack this. Please help. Tag: Will file permissions need to be changed? Tag: 65138
  - 19
    - Alternative to ISA Maybe you can help me on this; I have clients that donâ??t want to spend $1200 - $2000 on ISA for firewall protection that are currently using a Linksys router for protection. Problem with this is the client also wants to run OWA (Outlook Web Access) and make several VPN connections at once which Linksys doesnâ??t provide. Iâ??m looking for a midrange device to replace Linksys routers, something around the $300 - $400 range. Something I can make the necessary VPN connections, open close ports, etc. What's the alternative to ISA? Tag: Will file permissions need to be changed? Tag: 65137
  - 20
    - 2003 DC auditing issue I have Windows 2003 test machine , and I test auditing policies . Configuration ======== 2003 Domain Controller , with default installation settings . Symptoms ====== If I configure all audit policies in â??Default Domain Controllers Policyâ?? to â??Not configuredâ?? ( not â??No Auditingâ?? ) â?? as expected - nothing is audited. If I then, configure a single ( no matter which one ) Audit Policy ( say Audit Account Management ) to Audit Success and Audit Failure , as expected - Account Management events are being log , HOWEVER , Event IDs which belong to other Security Categories are ALSO being log in Security Event Viewer. That is â?? I receive logs for Logon/Logoff , Account logon, Privilege Use and so on. Why is this behavior ? I expected to receive only logs sourced by Account Management policy as it was the only set on. I used GPMC Results to make sure no other scoped GPOs have auditing enabled. Tag: Will file permissions need to be changed? Tag: 65135
  - 21
    - Q: Downloading critical updates. Hi Group, I am building an Internet access LAN for work. This will be connected to a 2MBit feed. I would like to download and install all the relevant security updates for the servers and workstations BEFORE I connect them to ANYTHING. Is there somewhere you could point me to that would have a comprehensive list of patches, etc that should be installed? I'd also like to install IE6SP1 but there does not appear to be a network install for that! I have IE6 installed, is there a separate service pack that can be applied? Many thanks for any replies, Paul. Tag: Will file permissions need to be changed? Tag: 65132
  - 22
    - Symantec Script blocking I keep getting the message that Symantec script blocking has prevented a sript that could be harmful to you. This prevents me from accessing one website which I have to have to run my business. This message and the result happens inspite the fact that I have uninstalled all Norton programs that were on my computer. At least, I think so and I can't find them either on my computer. What can I do to get rid of the problem? I am desperate, -- Aslam www.drugsraffordable.com Tag: Will file permissions need to be changed? Tag: 65127
  - 23
    - Need help with Hijackthis Spybot, Adaware, Spyblaster, CWshredder and Mcafee are no match for something that keeps disabling Mcafee and taking over my computer. All of the preceeding software are 100% up to date. So I tried running Hijackthis. Can someone let me know which ones to delete? The Hijackthis log is as follows: Logfile of HijackThis v1.98.0 Scan saved at 11:14:17 PM, on 12/08/2004 Platform: Windows 98 Gold (Win9x 4.10.1998) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\SYSTEM\KERNEL32.DLL C:\WINDOWS\SYSTEM\MSGSRV32.EXE C:\WINDOWS\SYSTEM\MPREXE.EXE C:\WINDOWS\SYSTEM\mmtask.tsk C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\GUARDDOG.EXE C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSRTE.EXE C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\GUARDDOG.EXE C:\WINDOWS\EXPLORER.EXE C:\PROGRAM FILES\MCAFEE.COM\PERSONAL FIREWALL\MPFTRAY.EXE C:\PROGRAM FILES\MCAFEE\MCAFEE SHARED COMPONENTS\GUARDIAN\CMGRDIAN.EXE C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSSHLD.EXE C:\PROGRAM FILES\MCAFEE.COM\AGENT\MCAGENT.EXE C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSESCN.EXE C:\WINDOWS\SYSTEM\MSTASK.EXE C:\PROGRAM FILES\MCAFEE.COM\PERSONAL FIREWALL\MPFAGENT.EXE C:\WINDOWS\SYSTEM\RNAAPP.EXE C:\WINDOWS\SYSTEM\TAPISRV.EXE C:\WINDOWS\NOTEPAD.EXE C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE C:\WINDOWS\DESKTOP\HIJACKTHIS.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.earthlink.com/ R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = MindSpring Internet Explorer O2 - BHO: McAfee Privacy Service - {cc4b2ee5-4803-11d7-8a38-00b0d0c6b814} - C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\GDIEHELP.DLL O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHELPER.DLL (file missing) O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSSHL.DLL O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX O4 - HKLM\..\Run: [MPFTray] C:\PROGRA~1\MCAFEE.COM\PERSON~1\MPFTRAY.EXE O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\MCAFEE.COM\AGENT\McUpdate.exe O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\MCAFEE.COM\VSO\MCMNHDLR.EXE" /checktask O4 - HKLM\..\Run: [McAfee Guardian] c:\Program Files\McAfee\McAfee Shared Components\Guardian\CMGrdian.exe /SU O4 - HKLM\..\Run: [VirusScan Online] "C:\PROGRA~1\MCAFEE.COM\VSO\mcvsshld.exe" O4 - HKLM\..\Run: [MCAgentExe] C:\PROGRA~1\MCAFEE.COM\AGENT\mcagent.exe O4 - HKLM\..\RunServices: [GuardDogEXE] "C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\GUARDDOG.EXE" /SERVICE O4 - HKLM\..\RunServices: [McVsRte] C:\PROGRA~1\MCAFEE.COM\VSO\mcvsrte.exe /embedding O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O9 - Extra button: Privacy Bar - {cc4b2ee5-4803-11d7-8a38-00b0d0c6b814} - C:\PROGRAM FILES\MCAFEE\MCAFEE PRIVACY SERVICE\GDIEHELP.DLL O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061001/housecall.trendmicro.com/housecall/xscan53.cab Thanks, Bryan Tag: Will file permissions need to be changed? Tag: 65124
  - 24
    - EAP types I am working on implementing 802.1x with EAP-TLS. My requirement is that the authentication requires a client certificate, not just server side. My understanding is that EAP-TLS requires both user & computer certifcates. This is nice, but a little overkill for our implementation. Is there a way to implement EAP that only requires a computer certificate for the clients, but uses user name and password for user authentication? Can I implement PEAP to do this? Tag: Will file permissions need to be changed? Tag: 65118
  - 25
    - Lock Account/Logoff Time-out I have a SBS 2000 network. Default settings in my domain log users off (either locked or idle) after about 24 hours. We recently installed an application that needs to be running 24/7 with a user account logged on with admin rights. For security purposes, I would prefer to log the user on and lock the account. The problem is after 24 hours, the user is automatically logged off; therefore shutting down the application. My questions is: How can modify the GP settings so user accounts can be locked indefinately? I appreciate your help. Tag: Will file permissions need to be changed? Tag: 65117

Curently i'm creating a new domain for a small company and migrating users
and resources over from their old domain and I have a question about file
permissions. First off, the environment is all WIndows 2003 DC's and file
servers. I used ADMT v2 to migrate users and groups over and I did migrate
SID's and passwords. Now during testing, users can login to the new domain
but don't have permission to their roaming profiles or shared folders that
reside on servers still on the old domain. From my understanding, migrating
the SID's would allow users access to resources on the old domain. I do have
a two way trust between the domains and can validate them with no issues.
Should I go ahead and bring the servers into the new domain? And if so, would
I need to reset permissions on their folders and profiles? And if you're
going to say "Use the domain renaming tool". The company has a lot of major
issues with their current AD DB and I believe it would be more stable if we
just started from scratch.

Thank you for your time and help!

Chris

Top