Results 1 to 8 of 8

Thread: Multiple User Security

  1. #1
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188

    Multiple User Security

    Hi, following on from this thread: http://antionline.com/showthread.php?t=275346

    I thought it might be interesting to share thoughts and methods of implementing secure multiple user access?

    I am not talking about the standard network stuff here; rather I am looking at situations where the same hardware assets have to be shared by a number of people.

    To restrict the discussion to current situations I would suggest that we basically look at Win2000, XP and Vista................. or other OSes that are contemporary with them

    What I am asking, is that where you have to share workstations, how do you do it? and why did you chose that particular method?

  2. #2
    Junior Member
    Join Date
    Jan 2007
    Location
    Des Plaines
    Posts
    4

    Post Novell Client

    Hey Nihil,

    Some of the tips you mentioned I had already implemented. After my cousin hacked my laptop I went on a crusade to find out everything about it. All efforts were futile. Instead I started taking other measures to beef up the security. I ran across Novell Client. Do you think this may help me?

  3. #3
    Senior Member
    Join Date
    Dec 2001
    Posts
    319
    At the place where I work, we just use AD w/ roaming profiles to handle it. We also map their My Documents folder to a remote server, and pass the info through policy.

  4. #4
    AOs Resident Troll
    Join Date
    Nov 2003
    Posts
    3,152
    delstar\AOBaba

    you are both talking about network security......

    AOBaba.......you will need a novell server to run a novell client

    I think what Nihil is looking for is more how do you secure your XP home machine when you have 4 kids and a spouse that use the same machine???

    NTFS and Limited accounts, auto lock on when account becomes idle

    Everyone has thier own "my docs\pics\music" area...which are inaccessible to the other accounts...unless you are all powerful admin ...which happens to be me

    Admin account is only used for admin duties...I have a regular account....just like everone else.

    Thats what I do


    MLF
    How people treat you is their karma- how you react is yours-Wayne Dyer

  5. #5
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    There are third party solutions such as this one, but I have no idea how good they are

    http://www.fspro.net/lock-pc/

  6. #6
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    Delstar is right on. Most places use AD with roaming profiles and for added security they have a secure server that has mapped drives for each user. It is pretty secure and quite convenient.

    MLF I think you have a perfect setup for a home setup.

    Nihil Im not sure how well how those things but what is the purpose for a program like that. I would rather logoff each time then use a program like that. As far as I know those types of programs are easy to get around because they are usually just a start up entry/ a service that runs in the background.

    What I highly recommend for computers that have multiple users on them is DeepFreeze. (http://www.faronics.com) Any changes made to the system are reverted on reboot. You can make exceptions so each person could maintain their own personal folders but any thing that could be harmed outside of those folders is always restored on reboot.

  7. #7
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    I guess I can see a situation where multiple people are using the same thick client applications? Kind of like salespersons in stores or bartenders?

    There you want to preserve an audit trail to the individual. I have normally seen this done with a physical key or token, though.

    This sort of system for example will lock the user session when they remove their smartcard/token

    http://www.ecommnet.co.uk/products/s...rdadvanced.asp
    Last edited by nihil; May 23rd, 2007 at 01:03 PM.

  8. #8
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    That would be cool if you had a smartcard. I have never actually seen a system with that setup on it but it would be convenient.

Similar Threads

  1. Security Policy Model Creation for a Networked World
    By tenzenryu in forum The Security Tutorials Forum
    Replies: 11
    Last Post: November 4th, 2005, 07:10 PM
  2. Basic Unix security tutorial
    By \/IP3R in forum AntiOnline's General Chit Chat
    Replies: 16
    Last Post: March 7th, 2005, 10:25 PM
  3. A guide to proactive network security
    By SDK in forum Miscellaneous Security Discussions
    Replies: 0
    Last Post: December 1st, 2004, 12:45 AM
  4. The history of the Mac line of Operating systems
    By gore in forum Operating Systems
    Replies: 3
    Last Post: March 7th, 2004, 08:02 AM
  5. Security Policy
    By instronics in forum The Security Tutorials Forum
    Replies: 7
    Last Post: February 5th, 2003, 10:04 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •