SecurityFocus

Patching internet facing MS systems Mar 10 2008 10:44PM
Dan Lynch (DLynch placer ca gov) (5 replies)

RE: Patching internet facing MS systems Mar 27 2008 08:39PM
Kevin Ortloff (Kevin Ortloff j2global com)

RE: Patching internet facing MS systems Mar 12 2008 10:25PM
Dan Lynch (DLynch placer ca gov) (1 replies)

Re: Patching internet facing MS systems Mar 13 2008 03:49PM
Ansgar -59cobalt- Wiechers (bugtraq planetcobalt net) (1 replies)

RE: Patching internet facing MS systems Mar 13 2008 05:48PM
Dan Lynch (DLynch placer ca gov) (2 replies)

Re: Patching internet facing MS systems Mar 13 2008 06:35PM
Ansgar -59cobalt- Wiechers (bugtraq planetcobalt net)

RE: Patching internet facing MS systems Mar 13 2008 06:13PM
Dan Denton (ddenton remitpro com) (1 replies)

Re: Patching internet facing MS systems Mar 13 2008 06:47PM
Ansgar -59cobalt- Wiechers (cobalt planetcobalt net)

On 2008-03-13 Dan Denton wrote:
> Assuming the user doesn't have admin access, using group policies you
> can disable access to the connections tab in IE, or disable access to
> entire menus (tools, for instance).
>
> This also has the added advantage of blocking access to changing the
> user's home page and other functions.

Removing access to the GUI is pointless, because the users will still be
able to change the settings in the Registry. You need to protect those
settings instead, which can also be done via policies.

Regards
Ansgar Wiechers
--
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

[ reply ]

Re: Patching internet facing MS systems Mar 11 2008 05:48PM
Kurt Buff (kurt buff gmail com)

Re: Patching internet facing MS systems Mar 11 2008 03:00PM
Josh Haft (pacmansyu gmail com)

Re: Patching internet facing MS systems Mar 11 2008 02:32PM
Ansgar -59cobalt- Wiechers (bugtraq planetcobalt net)