We help IT Professionals succeed at work.
Get Started

Access Based Enumeration 2008- different from different share instances

533 Views
Last Modified: 2015-04-05
I have, or so I thought, limited enumeration based on NTFS.  The shared folder in question is hung off a server and uses two instances  \\server\new shared\ and \\server\newshared\ for the same folder.  Note the instance names differ by the presence or lack of a space.

If a user hits the “new shared” with a space, their view is limited based on NTFS perms.  Folders to which they have no permission are not seen.  However, if a user hits “newshared” with no space, they can see all the folders contained.  They are still prevented from accessing the subfolders as they should by NTFS, but now they can see them.
Share level permissions for “New Shared” are, Authenticated Users, domain Users, and Administrators(local) all full control.  The share level permissions for “NewShared” are Authenticated Users, Domain Admins, and Domain Users, again all full control.

As the GPO shared drive mapping is through “new shared” I’m probably going to just kill the “newshared” instance, but I would like to understand.  The mapping GPO is set to “Run in logged on user’s security context”, Show this drive, show all drives, reconnect, with a designated drive letter mapped to “New Shared”.

Clients are Win7-32.  Server is 2008R2 with file server and print server roles.
Comment
Watch Question
Systems Administrator
Commented:
This problem has been solved!
Unlock 1 Answer and 1 Comment.
See Answer
Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

  • Troubleshooting
  • Research
  • Professional Opinions
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE