LANSYS@UBVMS.BITNET (01/13/90)
Hello, we were told when we first began installting novell networks
Hello, we were told when we first began installing novell networks
to set up the rights for SYS: as ROS and add additional rights
where necessary for certain applications who require Create
,delete, etc rights.
Well, even though we have a fairly secure menuing system (SABER)
we know that people can escape to the network prompt in several
applications. What we did not know till recently, is that if they
can escape to the network prompt and CD around into various
applications they can copy the software off the server to their
local drives.
Are we missing something very obvious here, this seems like a low
level of security. We do not like to hide all the files, since it
is a real hassel to do administration.
Any solutions, addons, experiences will be appreciated.
LAN Systems S.U.N.Y at Buffalo
LANSYS@UBVMSHUGHESB%AC%CSC@CSC.ISU.EDU (01/15/90)
To avoid people copying executable files from your server you may mark them execute only (see the flag command). Brian Hughes Idaho State University _____
ABTSACS@UWLAX.BITNET (Dan Abts - UWL System/Network Manager) (01/16/90)
I flag some .EXE and .COM files as execute only to prevent users from copying
them, but this even prevents my tape backup system from copying them. I keep
a copy of these files in another directory that only the supervisor can
access that are not flagged execute only. These do get backed up and if I need
to reload the disk, they can be copyed back into the correct places and re-
flagged.
Dan Abts
Academic Computing Services
Univ. of WI - La Crosse
ABTSACS@LAX.WISC.EDU
ABTSACS@UWLAX.BITNET