[THIN] Re: Application writing to C:\WINNT\SYSTEM32

• From: "Steve Rance" <Steve.Rance@xxxxxxxxxxxxxxxxxxxxx>
• To: <thin@xxxxxxxxxxxxx>
• Date: Tue, 10 Jun 2003 17:00:42 +0100

Thanks Guys,  that gives me something to work on.

You have got to love these little software houses....they do like to do =
their own thing...

Steve=20

-----Original Message-----
From: Ziots, Edward [mailto:EZiots@xxxxxxxxxxxx]
Sent: 10 June 2003 16:46
To: 'thin@xxxxxxxxxxxxx'
Subject: [THIN] Re: Application writing to C:\WINNT\SYSTEM32


I gotta kinda concurr with Ron and with your line of thinking, giving =
Write
access to the System32 directory is just looking for trouble, even if =
you
set up auditing for successful delete actions you will spend most of =
your
time ensuring that log are dumped parsed to look for any malicous =
intentions
on behalf of the users or the application.=20

USually I lock the Exe. dll and Ocx files in C:\winnt and below down to
users Read and Execute and nothing else. Takes care of use network based
viruses that love to infect executables and cause you grief.=20

EZ

-----Original Message-----
From: Ron Oglesby [mailto:roglesby@xxxxxxxxxxxx]
Sent: Tuesday, June 10, 2003 10:15 AM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: Application writing to C:\WINNT\SYSTEM32


Yeah, way back, no MS is forcing people to run half way decent apps....

DAMN!

Ron Oglesby
Senior Technical Architect
=3D20
RapidApp
Office 312.372.7188
Mobile 815.325.7618
email roglesby@xxxxxxxxxxxx
=3D20

-----Original Message-----
From: Braebaum, Neil [mailto:Neil.Braebaum@xxxxxxxxxxxxxxxxx]=3D20
Sent: Tuesday, June 10, 2003 9:17 AM
To: 'thin@xxxxxxxxxxxxx'
Subject: [THIN] Re: Application writing to C:\WINNT\SYSTEM32

Back in the days... <sign... nostalgic flashback> you could accomodate
this,
with application compaibiltiy flags.

I've never had to use them since Winframe and Outlook 98, and from what
I
gather they broke them from working in subsequent (OS) versions.

Neil

> -----Original Message-----
> From: Ron Oglesby [mailto:roglesby@xxxxxxxxxxxx]=3D20
> Sent: 10 June 2003 14:57
> To: thin@xxxxxxxxxxxxx
> Subject: [THIN] Re: Application writing to C:\WINNT\SYSTEM32
>=3D20
> I wouldn't give them full access. How about write and delete=3D20
> to the directory Then re-ACL the files in the dirs and sub=3D20
> dirs with Read and execute?
>=3D20
> If that doesn't work Softricity would fix this since the app=3D20
> would really right it to a user specific storage location=3D20
> even if it is supposed to go in System32.=3D3D20
>=3D20
> Of course the cost of softicity could be prohibitive unless=3D20
> this is a absolutely show stopping app, or you adopt it to=3D20
> deploy all your apps on TS with.
>=3D20
> -----Original Message-----
> From: Steve Rance [mailto:Steve.Rance@xxxxxxxxxxxxxxxxxxxxx]=3D3D20
> Sent: Tuesday, June 10, 2003 8:29 AM
> To: Thin @ Freelists (E-mail)
> Subject: [THIN] Application writing to C:\WINNT\SYSTEM32
>=3D20
> Hi all,
>=3D20
> I have been given a fairly specialised application to install=3D20
> on our =3D3D3D Citrix server.  After installing it on my test box=3D20
> I found that it =3D3D3D creates, writes to, then deletes the file=3D20
> C:\WINNT\SYSTEM32\TEMP.TMP =3D3D3D during starting up.  As a=3D20
> normal user doesn't have write access to this =3D3D3D directory=3D20
> the application falls over in a big heap.  If I give them=3D20
> Full =3D3D3D Access to SYSTEM32 the application works fine.  I=3D20
> have tried various =3D3D3D things, including creating the file=3D20
> manually then giving the users full =3D3D3D access and dening=3D20
> delete, but this didn't work.
>=3D20
> I have contacted product support and they have confirmed it=3D20
> is a known =3D3D =3D3D3D issue, however they are unlikely to fix =
this=3D20
> issue as they have very few =3D3D3D users (I may be the one only)=3D20
> that use Citrix so don't see it as =3D3D3D problem.
>=3D20
> I have a bad feeling about opening up Full Access to my SYSTEM32 =
=3D3D3D
> directory on live servers.   Would you agree this is a bad=3D20
> thing to do?
> =3D3D3D
> Would you do it?
>=3D20
> Can anyone think of a way around this issue?
>=3D20
> I would welcome any comments on this, even if its "don't do=3D20
> it!" so I =3D3D =3D3D3D can go back to my bosses.

***********************************************************************
This e-mail and its attachments are confidential and are intended =
for=3D20
the above named recipient only. If this has come to you in error,=3D20
please notify the sender immediately and delete this email from your
system. You must take no action based on this, nor must you copy or
disclose it or any part of its contents to any person or organisation.

Statements and opinions contained in this email may not necessarily=3D20
represent those of Littlewoods. Please note that email =
communications=3D20
may be monitored.=3D20

The registered office of Littlewoods Limited and its  subsidiaries
is 100 Old Hall Street, Liverpool, L70 1AB.=3D20
Registered number of Littlewoods Limited is 262152=3D20
 ***********************************************************************
********************************************************
This weeks sponsor - Emergent Online 99Point9.com
Designed to facilitate efficient resolution of your technical
server-based questions, issues and incidents, technical support is a few
mouse-clicks away: you submit your incident-specific support requests
via our online support helpdesk, our certified engineers resolve them
while you monitor the progress, and your systems get back to 99.9%
up-time in no time.
http://www.99point9.com=3D20
**********************************************************
Useful Thin Client Computing Links are available at:
http://thethin.net/links.cfm

For Archives, to Unsubscribe, Subscribe or=3D20
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm
********************************************************
This weeks sponsor - Emergent Online 99Point9.com
Designed to facilitate efficient resolution of your technical =
server-based
questions, issues and incidents, technical support is a few mouse-clicks
away: you submit your incident-specific support requests via our online
support helpdesk, our certified engineers resolve them while you monitor =
the
progress, and your systems get back to 99.9% up-time in no time.
http://www.99point9.com=20
**********************************************************
Useful Thin Client Computing Links are available at:
http://thethin.net/links.cfm

For Archives, to Unsubscribe, Subscribe or=20
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm
********************************************************
This weeks sponsor - Emergent Online 99Point9.com
Designed to facilitate efficient resolution of your technical =
server-based questions, issues and incidents, technical support is a few =
mouse-clicks away: you submit your incident-specific support requests =
via our online support helpdesk, our certified engineers resolve them =
while you monitor the progress, and your systems get back to 99.9% =
up-time in no time.
http://www.99point9.com=20
**********************************************************
Useful Thin Client Computing Links are available at:
http://thethin.net/links.cfm

For Archives, to Unsubscribe, Subscribe or=20
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm
********************************************************
This weeks sponsor - Emergent Online 99Point9.com
Designed to facilitate efficient resolution of your technical server-based 
questions, issues and incidents, technical support is a few mouse-clicks away: 
you submit your incident-specific support requests via our online support 
helpdesk, our certified engineers resolve them while you monitor the progress, 
and your systems get back to 99.9% up-time in no time.
http://www.99point9.com 
**********************************************************
Useful Thin Client Computing Links are available at:
http://thethin.net/links.cfm

For Archives, to Unsubscribe, Subscribe or 
set Digest or Vacation mode use the below link:
http://thethin.net/citrixlist.cfm

Other related posts:

• » [THIN] Application writing to C:\WINNT\SYSTEM32
• » [THIN] Re: Application writing to C:\WINNT\SYSTEM32
• » [THIN] Re: Application writing to C:\WINNT\SYSTEM32
• » [THIN] Re: Application writing to C:\WINNT\SYSTEM32
• » [THIN] Re: Application writing to C:\WINNT\SYSTEM32
• » [THIN] Re: Application writing to C:\WINNT\SYSTEM32
• » [THIN] Re: Application writing to C:\WINNT\SYSTEM32
• » [THIN] Re: Application writing to C:\WINNT\SYSTEM32
• » [THIN] Re: Application writing to C:\WINNT\SYSTEM32
• » [THIN] Re: Application writing to C:\WINNT\SYSTEM32
• » [THIN] Re: Application writing to C:\WINNT\SYSTEM32

1. Home
2. thin
3. Archive
4. 06-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---