Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

How to Block any Local Access by the User to the Registry in NT

1 view
Skip to first unread message

Jeremy T

unread,
Dec 10, 2001, 1:25:40 PM12/10/01
to
I need to be able to block any local access to the registry by anyone
except people with administration rights. I was wondering how to go
about accomplishing this.

Jeremy T.

Michael Scheidell

unread,
Dec 10, 2001, 1:59:59 PM12/10/01
to
"Jeremy T" <jtru...@rprwyatt.com> wrote in message
news:7fa830e3.01121...@posting.google.com...

> I need to be able to block any local access to the registry by anyone
> except people with administration rights. I was wondering how to go
> about accomplishing this.

you might cause massive problems if you do this wrong.

<start><run><regedt32>

highlight reg tree, click on security, remove 'everyone' (add read rights if
you need it)

Ken Hagan

unread,
Dec 11, 2001, 5:02:39 AM12/11/01
to
"Michael Scheidell" <sche...@fdma.com> wrote...

>
> you might cause massive problems if you do this wrong.
>
> <start><run><regedt32>
>
> highlight reg tree, click on security, remove 'everyone' (add read rights
if
> you need it)

Hmm. You might cause massive problems if you do it right too!
Highlight HKEY_LOCAL_MACHINE, not the whole tree. And yes, you
will need to offer them read access.

Still, this is a brutal way to tighten up a machine. Can we not do
better by installing the Security Configuration Editor from the NT4
Option Pack, and pulling ourselves up to "secure workstation" mode?

Note to original poster. You may find that apps fail randomly
(incomprehensible error messages, occasional crashes) when it
is run on a properly secured system. Be prepared to learn more
than is healthy about "debugging someone else's app by using
auditing and the security event log" if you try this.


Jeremy T

unread,
Dec 11, 2001, 11:02:14 AM12/11/01
to
I checked the permissions on that portion of the tree and the everyone
group only has read access. What I'm basiacally trying to do is
simulate someone else's system. Our program here on site makes calls
to the registry through API calls but some how a customer has it so it
is blocking our program from making those calls. So were attempting to
simulate how they're blocking us so we can in turn create a solution
to go around the blocking and make the software functional on their
systems. Thanks for your help.

Jeremy T.

"Ken Hagan" <K.H...@thermoteknix.co.uk> wrote in message news:<1008064894.19821....@news.demon.co.uk>...

0 new messages