[Full-Disclosure] W2k users, local admin rights and GPOs
3APA3A
3APA3A at SECURITY.NNOV.RU
Thu Oct 30 21:11:47 GMT 2003
Dear Sergey V. Gordeychik,
There are more ways to stop GPs from applying. For example see
http://www.security.nnov.ru/search/news.asp?binid=1613
--Wednesday, October 29, 2003, 5:48:01 PM, you wrote to security at exim.dyndns.org:
SVG> So, I got an idea.
SVG> Everybody, who can drop pings, or SMB commutations, from his local
SVG> machine to DC can prevent GPO updates!
SVG> User can use IPSec policy (sic!) to do it :-)
SVG> So, Laura right :-)
SVG> And I'm wrong :-(
SVG> _______________________________________________
SVG> Full-Disclosure - We believe in it.
SVG> Charter: http://lists.netsys.com/full-disclosure-charter.html
--
~/ZARAZA
Ну а в целом, Уильям, здешний климат - ежели только
это можно назвать климатом, вполне сносный. (Твен)
Full-Disclosure is hosted and sponsored by Secunia.