protect user from himself

  • Thread starter Thread starter sali
  • Start date Start date
S

sali

is it good practice on xp to drasticly limit user rights?
i mean, *everything* on the system, except user's "doc & sett" folder to be
just *read_only*

it should keep user [who is not admin] from modifying anything on the
system, so he is free of malwares and viruses and he cannot harm system
stability, at least not of other users having account on that workstation.

such setting should avoid user from performing hardware adding and driver
upgrade, and autoupdate because that operations excedes his limited rights.

is this config scenario applicable in the reality?

thnks for advice and suggestion
 
sali said:
is it good practice on xp to drasticly limit user rights?
i mean, *everything* on the system, except user's "doc & sett"
folder to be just *read_only*

it should keep user [who is not admin] from modifying anything on
the system, so he is free of malwares and viruses and he cannot
harm system stability, at least not of other users having account
on that workstation.
such setting should avoid user from performing hardware adding and
driver upgrade, and autoupdate because that operations excedes his
limited rights.
is this config scenario applicable in the reality?

Make everyone "Users".. Not Power Users... Just Users.
That covers a lot of the normmal stuff.
 
sali said:
is it good practice on xp to drasticly limit user rights?
i mean, *everything* on the system, except user's "doc & sett"
folder to be just *read_only*

it should keep user [who is not admin] from modifying anything on
the system, so he is free of malwares and viruses and he cannot
harm system stability, at least not of other users having account
on that workstation.
such setting should avoid user from performing hardware adding and
driver upgrade, and autoupdate because that operations excedes his
limited rights.
is this config scenario applicable in the reality?

Make everyone "Users".. Not Power Users... Just Users.
That covers a lot of the normmal stuff.

Except only Admin local users can run Citrix clients, and Quickbooks and
several others.
 
Leythos said:
Except only Admin local users can run Citrix clients, and
Quickbooks and several others.

I still have not found a single application where that "have to be admin"
qualification cannot be gotten around with a little effort.
 
I still have not found a single application where that "have to be admin"
qualification cannot be gotten around with a little effort.

How do you get around Citrix Meta Frame through the Web? It requires
ActiveX installation, requires that the user be an Admin - I would love
to know how to get around that.

How do you get around QuickBooks requiring it?
 
Leythos said:
Except only Admin local users can run Citrix clients, and Quickbooks and
several others.

http://www.threatcode.com has some suggestions on tweaking Quickbooks to make
it work properly - although it might be nice if Intuit were to actually fix
their software so that you don't have to make your accountant into a system
admin.

Alun.
~~~~

[Please don't email posters, if a Usenet response is appropriate.]
 
Back
Top