Spyware on Terminal Servers

  • Thread starter Thread starter D
  • Start date Start date
D

D

Hello..I am curious as to how I can manage/eliminate
spyware/adware on a Win2k terminal server. In our
environment we don't have the luxury of restricting
permissions for users..all of our users need admin rights
for the work we do. We run Spybot/CWShredder almost
daily, but it doesn't seem to help much. So how do you
handle this increasingly hazardous and annoying issue?
Thanks.
 
You can restrict which applications users can execute via Software Restriction Policy, so they wouldn't be able to execute the installation program required to load the spyware/malware even if they're an administrator

http://www.microsoft.com/technet/pr.../terminal/trmlckd.mspx#XSLTsection12712112012

Regmon & filemon can identify which files & registry locations users need permission to write to w/o making everyone a super-user, root, admin....

http://www.workthin.com/tsdown.ht

If you wish to explain what programs users run that requires them to have administrative priviliges/rights on a multi-user system, we can make suggestions on how to safely change this. I have never and will never install an application server for a company that I support where everyone is an administrator. If they want to do this I'll tell them to hire someone else, as I don't want to be blamed for someone elses poor decisions. (my two cents

Patrick Rous
Microsoft MVP - Terminal Serve
http://www.workthin.co


----- D wrote: ----

Hello..I am curious as to how I can manage/eliminate
spyware/adware on a Win2k terminal server. In our
environment we don't have the luxury of restricting
permissions for users..all of our users need admin rights
for the work we do. We run Spybot/CWShredder almost
daily, but it doesn't seem to help much. So how do you
handle this increasingly hazardous and annoying issue?
Thanks
 
Back
Top