[Esd-l] macro scanner: defang instead of refuse

John D. Hardin jhardin at impsec.org
Tue Jun 4 08:45:01 PDT 2002

On 3 Jun 2002, Kenneth Porter wrote:

> Group membership management on a Windows share implies training users to
> grant access to others. They already know how to pick names out of their
> address book. Most think that email is "secure enough", so they might
> not be concerned with limiting access to a file on a company-wide public
> share. Otherwise one faces the battle of teaching them how to set up
> permissions and they then have to worry about what happens if they screw
> up and a boss can't get in.

Oh. I was proceeding from the assumption that it'd be a centralized
share on a server, where you would control the access via NT group
membership, not a share on an individual user's computer managed by
that user.

 John Hardin KA7OHZ    ICQ#15735746    http://www.impsec.org/~jhardin/
 jhardin at impsec.org                        pgpk -a jhardin at impsec.org
  768: 0x41EA94F5 - A3 0C 5B C2 EF 0D 2C E5  E9 BF C8 33 A7 A9 CE 76 
 1024: 0xB8732E79 - 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
 "To disable the Internet to save EMI and Disney is the moral
  equivalent of burning down the library of Alexandria to ensure the
  livelihood of monastic scribes."
                                    -- John Ippolito of the Guggenheim
   353 days until The Matrix Reloaded

More information about the esd-l mailing list