I've been tasked with securing a Windows 2000 PC.
At present the users have full administrator rights - we now want to lock down the PC - so that regular users will NOT be able to copy data from the hard drive to a USB Drive or burn it to a CD or write it to a floppy (but administrators need to be able to do this).
The PC is stand-alone.
Any hints / suggestions / pointers etc would be very much appreciated.
Thanks in advance,