Solved

Securing c$

Posted on 2004-04-19
6
249 Views
Last Modified: 2010-04-13
Hi, just noticed i can get to anybodys c-d rive using a map to \\name\c$    ok if i was in the domain, but from a machine just on the same network is a bit didgey

whats teh best way to secure..  remove c$ or is there a setting somewhere?
0
Comment
Question by:mhamer
6 Comments
 
LVL 9

Expert Comment

by:robinluo
Comment Utility
Only because your account belongs to domain admin group. Otherwise you won't have permission to access c$. It's generally safe to leave the setting like this. Secure your admin group is a better choice.
0
 

Author Comment

by:mhamer
Comment Utility
hi, i agree but not in this case, its a standalone pc in a workgroup and logged on to it locally.  yet it can see c$ on all of our domain pc's

is it the case that administrator of any domain can see $ shares?
0
 
LVL 86

Expert Comment

by:jkr
Comment Utility
A little radical, yet effective: http://support.microsoft.com/default.aspx?scid=kb;en-us;314984 ("HOW TO: Create and Delete Hidden or Administrative Shares on Client Computers") and in particular http://support.microsoft.com/default.aspx?scid=kb;en-us;314984#2b ("Disable the Default Administrative Shares for Root Partitions and the System Root Folder")
0
Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

 
LVL 16

Accepted Solution

by:
mdiglio earned 500 total points
Comment Utility

Do you have the Everyone group or Authenticated Users in the local Administrators group on the domain pc's?
(check to see who is in the local admin group on these pcs)

If you are logged on locally does the name/password correspond to any name/password in your domain?
0
 

Author Comment

by:mhamer
Comment Utility
Hi, yes a case of friendly logon, the local administrator and pasword do match a couple of pc's loacal administrators logons which do have membership to the domain, changed the password and no longer logging on.
ta
0
 
LVL 16

Expert Comment

by:mdiglio
Comment Utility
Glad you got it working..thanks for the points
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Scam emails are a huge burden for many businesses. Spotting one is not always easy. Follow our tips to identify if an email you receive is a scam.
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

9 Experts available now in Live!

Get 1:1 Help Now