June 14th, 2005, 05:22 PM
Terminal Services/Citrix security concerns??? High school students!!!
Alright my company is looking at bringing a school of about 150 students onto our solution which basically provides a ts/citrix desktop for users to access files and such.
My question to all of you is what are some basic security concerns about an enviornment like this once a person has a username/password.
I use Nessus to secure from outbound however my concern is now people with usernames/passwords already.
I have found a couple of things and have questions on them as well.
Ability to right click my computer and pull up properties(not able to change anything but things are still viewable)
Ability to download batch files/scripts and run them(I know you can do a group policy to disable this but what I'm not sure on is wether it has to be applied as domain wide or not)
Ability to right click the start button and select explore(I don't know how to block this one)
I'm looking for a way to lock the users down to only running things like office. Accessing a share/home drive and saving files and such.
June 14th, 2005, 08:36 PM
June 14th, 2005, 08:42 PM
good script, however I'm still in need of locking desktops and removing GUI functionality as well as bat script functionality and anything that I've overlooked.
June 14th, 2005, 10:24 PM
flying blind this is the best I can do...
Discussion Printout: Lock down your desktops with Windows' Group Policy Editor
June 14th, 2005, 10:33 PM
I understand group policy and such. I'm looking for specific ones to use. You said flying blind. Can I provide you more information. If so what?