[THIN] Re: Yahoo messenger
- From: "Lutz, Ken" <KLUTZ@xxxxxxxxxxxxxxxxx>
- To: "'thin@xxxxxxxxxxxxx'" <thin@xxxxxxxxxxxxx>
- Date: Mon, 15 Dec 2003 12:34:20 -0800
Jeff: I'm pretty sure I know who did the install. There is only one user with
full control rights to the program folder. That tells me who did the install.
I am going to do what Greg recommended and put a Yahoo folder in place with
security to prevent anyone from having access to it.
Does anyone have a manual uninstall process for Yahoo Messenger? When I look
at the web site it just said to delete the folder. I would like to clean it
out of the registry also.
Thanks,
Ken ...
-----Original Message-----
From: Jeff Durbin [mailto:techlists@xxxxxxxxxxxxx]
Sent: Monday, December 15, 2003 12:26 PM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: Yahoo messenger
You could enable file auditing (of writes) on the Program Files folder to see
who's doing it.
-----Original Message-----
From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On Behalf Of
Lutz, Ken
Sent: 16 December 2003 9:14 AM
To: 'thin@xxxxxxxxxxxxx'
Subject: [THIN] Re: Yahoo messenger
Thanks Greg. I'm beginning to think that I need to leave the empty folder and
put security on it like you said. What bothers me most is that I thought that
a general user couldn't install software, yet this did with Yahoo messenger.
Ken ...
-----Original Message-----
From: Greg Reese [mailto:GReese@xxxxxxxxxxxxxxxx]
Sent: Monday, December 15, 2003 11:51 AM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: Yahoo messenger
if it installs to a folder or reg key, just leave the structure there but empty
and set the security to it to no access.
Disable the stuff in IE for loading Active x controls. This can lead to other
problems though. Use it cautiously.
I have had it sneak on my servers from time to time. I don't think it does any
damage.
Greg
-----Original Message-----
From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx]On Behalf Of
Lutz, Ken
Sent: Monday, December 15, 2003 2:06 PM
To: 'thin@xxxxxxxxxxxxx'
Subject: [THIN] Re: Yahoo messenger
That will block the site, but how do I set up my Citrix servers so that the
users can't install software, yet have the level of access they need to Program
Files?
I always thought that basic users couldn't install software.
Ken ...
-----Original Message-----
From: Jim Kenzig http://thethin.net [mailto:jimkenz@xxxxxxxxxxxxxx]
Sent: Monday, December 15, 2003 10:58 AM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: Yahoo messenger
Point all of the yahoo messenger servers to 127.0.0.1 in your hosts file or
dns.
JK
-----Original Message-----
From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx]On Behalf Of
Lutz, Ken
Sent: Monday, December 15, 2003 1:27 PM
To: Thin - List (thin@xxxxxxxxxxxxx)
Subject: [THIN] Yahoo messenger
I just found Yahoo messenger on one of my Citrix servers. I thought that I had
the server locked down tight enough that users couldn't install their own
software. None of my users have any elevated rights. They are not power
users. It looks like one user loaded the software, and then another was able
to access it. What is the best way to lock this down so that my users can't
install any software? Do I need to remove the Creator Owner setting from the
ACL for the Program Files folder to keep users from installing software? How
are others preventing the loading of software by users?
I install the software that I want loaded, and I install as an administrator.
Windows 2000 SP3 MetaFrame FR2/SP2 in a Windows 2000 AD domain.
Ken Lutz
Information Systems Department
Spokane County
Other related posts:
