> I've been securing Windows NT for almost 5 years now, and while there are
> some environments which I admit are almost impossible to properly secure
> (access to NT through WinDD, Citrix, or some other terminal-emulation-like
> server-based environment...thanks to Pete Da Silva)
Or any other situation where more than one user shares an NT workstation,
including kiosk type access to general applications (such as a public
print shop, computer lab, hotelling, ...), so it's not really fair to
simply dismiss this so blithely as a side effect of third party software.
NTFS is a reasonably good file system and NT provides all the hooks to
make shared use of hardware as secure as it is in UNIX. The problem is
that it's extremely difficult to simultaneously secure the system and
actually allow users to log in and run applications, because of the way
Windows software works... in fact, Microsoft is still telling application
vendors to have their programs put files in system directories, and doing
so themselves.
I am but secure north by northwest, when the wind
is from the south I can't tell a hack from a hacksaw.
*sigh*
|
|
