• STOCKTALK
• POLITICS
• PASTIMES

We've detected that you're using an ad content blocking browser plug-in or feature. Ads provide a critical source of revenue to the continued operation of Silicon Investor.  We ask that you disable ad blocking while on Silicon Investor in the best interests of our community.  If you are not using an ad blocker but are still receiving this message, make sure your browser's tracking protection is set to the 'standard' level.

Technology Stocks : Novell (NOVL) dirt cheap, good buy? -- Ignore unavailable to you. Want to Upgrade?

---

To: Paul Fiondella who wrote (30323) 2/14/2000 11:07:00 PM From: Spartex   Read Replies (1) | Respond to of 42771   Windows 2000 Security Hole Grants Widespread Access to Sensitive Information Introduction Today's networks are a collection of information and services that require managed access. Some services, such as printing or access to general company information need to be easily available to all authorized users. There are also sensitive business areas such as payroll, human resources, legal or security services that need very restricted access. These restriction needs also apply to the system administrators. Most networks provide an easy mechanism for granting general access such that the right to the information or service is "inherited" from above. An administrator granted general access will "inherit" rights to network services and information unless something is done to prevent access to the selected area. These sensitive departments may wish to block inherited administrative rights and use local, trusted administrators for these departments. novell.com ++++++++++++++++++++++++++++++++++++++++++++++++++++++ Hmmm, things are getting interesting around here. =;-)

To: Paul Fiondella who wrote (30323) 2/15/2000 11:08:00 AM From: PJ Strifas   Read Replies (1) | Respond to of 42771   This is interesting information but not likely a "security breach or hole" -- comprehensive training for network admins will now take on a higher meaning as I am sure something like this is covered in hands-on technical training. NDS has similar problems when people do not complete the proper steps to perform an action. There's an interesting "inheritance" of rights with NDS that will allow a user to inadvertantly gain "supervisor" rights to the file system of a particular server (or volumes) within a container if you are not careful in granting "supervisor" rights to NDS objects. This is not a security breach but bad administration or planning (You can choose which). With proper training, this can be avoided. I am sure the scenario which Novell claims is similar in nature. Then again, I'd like to see the methodology of Novell's claim and test it myself - you never know. Regards, Peter J Strifas

Home

Mail

Hot

SubjectMarks

PeopleMarks

Keepers

Settings

Terms Of Use

Contact Us

Copyright/IP Policy

Privacy Policy

About Us

FAQ

Advertise on SI

© 2025 Knight Sac Media.  Data provided by Twelve Data, Alpha Vantage, and CityFALCON News