Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 228
  • Last Modified:

List of all directories that "EVERYBODY" has access too

I'm a Win2000 newbie.
Win2000 Server and Win200 Clients within a domain.

Is it possible to generate a list of all directories, where "EVEVERYBODY" has rights to read and/or write?
Or is there a tool for this.
I want to remove EVERYBODY from all those directories.

Thanks

0
olio
Asked:
olio
1 Solution
 
ThePilgrimCommented:
Read the following article: http://www.microsoft.com/technet/prodtechnol/windows2000serv/maintain/security/secdefs.mspx

It covers the default ACLs in win2k.  The file to look at is either %windir%\inf\defltwk.inf or%windir%\inf\defltsv.inf depending on whether its a server or workstations, there's another file %windir%\inf\defltdc.inf (surprisingly!!) for DCs.

The referenced article should answer all your questions (its huge!!).
 
0
 
harleyjdCommented:
2 tools from sysinternals will do this. These are great freeware tools.

http://www.sysinternals.com/

Accessenum and shareenum.

AE will scan the local drives, and report permissions for all files and folders (you can narrow down the scope if you want)
http://www.sysinternals.com/ntw2k/source/accessenum.shtml

SE will scan shared folders and report permissions based on share
http://www.sysinternals.com/ntw2k/source/shareenum.shtml

0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now