• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

Default settings for share permissions - Everyone Group

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Exploits // System Weaknesses

View previous topic :: View next topic  
Author Message
oliviamcnish
Just Arrived
Just Arrived


Joined: 18 Dec 2009
Posts: 0


Offline

PostPosted: Fri Dec 18, 2009 6:21 pm    Post subject: Default settings for share permissions - Everyone Group Reply with quote

In the past the Everyone group was a default setting for Windows servers. I know it was changed to eliminate the anonymous access but I still see contradictory statements from Microsoft as to whether the Everyone group is the default setting to read shares for Windows servers. Can anyone help clear this up for me?

Thanks!
Back to top
View user's profile Send private message
AdamV
SF Mod
SF Mod


Joined: 06 Oct 2004
Posts: 24
Location: Leeds, UK

Offline

PostPosted: Fri Dec 18, 2009 7:37 pm    Post subject: Reply with quote

The change is that the everyone group no longer includes anonymous access, so old-school bods like me still use auth users out of habit even though everyone is now (relatively) neutered.
Current advice is probably that everyone on a share is OK as long as your NTFS is sensible (ie not wide open)

I think this was from around XP sp1 and 2003 RTM, but hopefully someone else can check this detail.
Back to top
View user's profile Send private message Visit poster's website
oliviamcnish
Just Arrived
Just Arrived


Joined: 18 Dec 2009
Posts: 0


Offline

PostPosted: Sat Dec 19, 2009 7:22 am    Post subject: Group= Everyone Reply with quote

Thanks. That was what I was reading as well. It appeared to me to still be default read for any authenticated user.

We were unlucky to find a number of servers where they had not taken this default read away that contained some PII data and other super secret stuff. But, it was okay. Only 28k users had access and it's only been out there for a couple of years. I'm sure no one saw a thing. Rolling Eyes
Back to top
View user's profile Send private message
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Exploits // System Weaknesses All times are GMT + 2 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register