[THIN] Re: Sasser patch
- From: "Braebaum, Neil" <Neil.Braebaum@xxxxxxxxxxxxxxxxx>
- To: <thin@xxxxxxxxxxxxx>
- Date: Thu, 6 May 2004 14:59:15 +0100
From memory, this security "enhancement" requires either the current
user own the profile folders, or the local administrator of the machine.
Neil
> -----Original Message-----
> From: thin-bounce@xxxxxxxxxxxxx
> [mailto:thin-bounce@xxxxxxxxxxxxx] On Behalf Of Kevin Lawson
> Sent: 06 May 2004 14:30
> To: thin@xxxxxxxxxxxxx
> Subject: [THIN] Re: Sasser patch
>
> Thats the other thing, Everyone did have full control. That
> is why I was pointed towards sasser adding an extra check
> when loading profiles as opposed to a general file security
> issue. Also if it was a general security problem I would
> expect users to fail to log into all servers not just the one
> I patched.
>
> To prove the problem I first logged in with my own account,
> this worked. I then changed ownership of the folder and all
> files/folders within it to administrator, It failed. I then
> just changed to top level folder to ownership of my user and it works.
>
> Cheers
>
> Kevin
>
> > -----Original Message-----
> > From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx]On
> > Behalf Of Monahan, Thomas
> > Sent: 06 May 2004 14:09
> > To: 'thin@xxxxxxxxxxxxx'
> > Subject: [THIN] Re: Sasser patch
> >
> >
> > Yea, thats what we did, we changed it to the Domain "Administrator"
> > account. In fact I think we changed some of the profiles to
> the local
> > Administrator account on the server. When we do that there is no
> > issue.
> >
> > Are you sure that its not a permissions issue after you change the
> > ownership? Try giving everyone full control, and see if it makes a
> > difference.
***********************************************
This e-mail and its attachments are confidential
and are intended for the above named recipient
only. If this has come to you in error, please
notify the sender immediately and delete this
e-mail from your system.
You must take no action based on this, nor must
you copy or disclose it or any part of its contents
to any person or organisation.
Statements and opinions contained in this email may
not necessarily represent those of Littlewoods.
Please note that e-mail communications may be monitored.
The registered office of Littlewoods Limited and its
subsidiaries is 100 Old Hall Street, Liverpool, L70 1AB.
Registered number of Littlewoods Limited is 262152.
************************************************
********************************************************
This Week's Sponsor - RTO Software / TScale
What's keeping you from getting more from your terminal servers? Did you
know, in most cases, CPU Utilization IS NOT the single biggest
constraint to scaling up?! Get this free white paper to understand the
real constraints & how to overcome them. SAVE MONEY by scaling-up rather
than buying more servers.
http://www.rtosoft.com/Enter.asp?ID=147
**********************************************************
Useful Thin Client Computing Links are available at:
http://thin.net/links.cfm
***********************************************************
For Archives, to Unsubscribe, Subscribe or
set Digest or Vacation mode use the below link:
http://thin.net/citrixlist.cfm
Other related posts:
