Everyone Group has full rights to root of C

[John C. Weldin]

Is there anything wrong with the Everyone Group having full rights to the
root of the C partition? If not, then what rights should that group have
there?

 

[Steven L Umbach]

That is not a good idea and has been remedied in Windows XP and Windows
2003. If you have access to one of those installations, then I would suggest
you use those settings including the advanced permissions. The everyone
group should not have more than list/read/execute in almost all
circumstances. The Windows 2000 Security Hardening Guide is a free download
from Microsoft that has specific recommendations for ntfs settings on the
root folder. --- Steve

http://www.smh.com.au/articles/2003/04/30/1051381977723.html

 

[Jeff Cochran]

Is there anything wrong with the Everyone Group having full rights to the
root of the C partition? If not, then what rights should that group have
there?

Ideally, the Everyone group should have no rights anywhere, as well as
no members. then you specify rights by groups as you need them.

Jeff

 

[Carrie Garth \(MVP\)]

Hi John,

I agree with Steve. See the following Microsoft Knowledge Base Article for the
default permissions on the root directory of the system drive for Windows XP.

KB327522 - MS02-064: Windows 2000 Default Permissions May Permit Trojan Horse Attack
http://support.microsoft.com/?scid=327522

--
Carrie Garth, Microsoft MVP for Windows 2000
-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- c x g

: "John C. Weldin" <jweldin AT focusbsi DOT com>
: Wrote in message : Sent: Tuesday, September 16, 2003 2:30 PM
: Is there anything wrong with the Everyone Group having full rights to the
: root of the C partition? If not, then what rights should that group have
: there?