Directory Security
Determine owner of all NT system directories is only the Administrator account because owners can change permissions
Determine application program and data directories are owned by restricted user or application owner account which should include NT Administrator account
Review access permissions assigned to groups and individual accounts
Full control (all permissions) and change (read, write, execute and delete) permissions are restricted to authorized users - remover everyone from everything
Cross reference groups to earlier step, identifying users with groups they belong to
Determine Change permissions and Take Ownership permissions are restricted to only Administrative accounts or groups
Shared Directories
Using File Manager directory, id all shared directories in the tree
Review and assess Share permissions assigned on a group and/or user basis
File Permissions
Using File Manager directory tree utility, validate security permissions for all system directories and significant application programs and directories
Make sure "everyone" (global) is removed from everything
|
