LANSYS@UBVMS.BITNET (01/13/90)
Hello, we were told when we first began installting novell networks Hello, we were told when we first began installing novell networks to set up the rights for SYS: as ROS and add additional rights where necessary for certain applications who require Create ,delete, etc rights. Well, even though we have a fairly secure menuing system (SABER) we know that people can escape to the network prompt in several applications. What we did not know till recently, is that if they can escape to the network prompt and CD around into various applications they can copy the software off the server to their local drives. Are we missing something very obvious here, this seems like a low level of security. We do not like to hide all the files, since it is a real hassel to do administration. Any solutions, addons, experiences will be appreciated. LAN Systems S.U.N.Y at Buffalo LANSYS@UBVMS
HUGHESB%AC%CSC@CSC.ISU.EDU (01/15/90)
To avoid people copying executable files from your server you may mark them execute only (see the flag command). Brian Hughes Idaho State University _____
ABTSACS@UWLAX.BITNET (Dan Abts - UWL System/Network Manager) (01/16/90)
I flag some .EXE and .COM files as execute only to prevent users from copying them, but this even prevents my tape backup system from copying them. I keep a copy of these files in another directory that only the supervisor can access that are not flagged execute only. These do get backed up and if I need to reload the disk, they can be copyed back into the correct places and re- flagged. Dan Abts Academic Computing Services Univ. of WI - La Crosse ABTSACS@LAX.WISC.EDU ABTSACS@UWLAX.BITNET