Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Need help with security hole on school network allowing file deletion

Status
Not open for further replies.
Guest_imported

Guest_imported

New member
Jan 1, 1970
0
Hi everyone. I could really use your help with this one. I am the head Tech Aid in our school. We are having a problem with kids deleting files through what appears to be a security hole. We are using Novell right now. We have the accessories folder on the desktop of all the workstations. The menubar is present on it. We managed to remove all of the text from the menubar. Kids can, however, right-click on the IE globe in the upper right corner and view the address bar. From there they have access to folders. They can delete folders by entering a folder and right clicking on the folder icon in the upper left-hand corner of the window.

All i need to know how to do is remove the menubar. It will solve everything. The servers and workstations all use Windows 98 with Novel 4.x(can't remember roight now)
 
Sort by date Sort by votes
If this folder resides on the server, then the problem you most likely have has to do with rights. What you would need to do is take a specific user (that being a student) and check to see what kind of rights he/she has to that particualr folder. If for some reason you find that they have more abilities than they should, you need to remove them. ie, best solution would be to also invoke the delete inhibit attirbute on those folders so they can not be deleted. But your going to have to do some digging to locate where the breach is. A security hole this is not, as a security hole is deemed a flaw in the Operating system itself, whereas Novell only has one, that being netbasic and users must have access to the server console to run this. So, walk the tree, somewhere, the users are being granted access either through a group or directly assigned rights.

I would check the groups that the user belongs to and check those rights there and then go to the user object itself and see what rights it has. Finally, I would also check trustee assignments as well. Keep in mind that if any person has been granted Admin or has been given the WRITE property right to a folder, it essentially opens the door for them.

If you have bindview, you can run a report to check for specific rights that each user has and determine where the problem is from there.

Hope this helps

Mark

Mark C. Greenwood, CNE
m_jgreenwood@yahoo.com

CNE 4.11 and CNE 5 certified. BS Degree in MIS. Working in the industry for 8 years.

I work with NT servers, NDS for NT as well.

 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

VicM
  • Question
Win7 backup on Win11 Pro box not completing as it had in the past
Replies
2
Views
440
VicM
VicM
bklabel1
  • Locked
  • Question
Reflections Attachmate with OpenVMS
Replies
1
Views
136
yamyam
yamyam
MartijnNL
  • Locked
  • Question
searching for files reaching file version limit
Replies
2
Views
135
MartijnNL
MartijnNL
DreemaGurl
  • Locked
  • Question
Can't log on to Citrix through emote access portal
Replies
1
Views
263
ntinlin
ntinlin
dumbchemist
  • Locked
  • Question
Using IDE to SATA/SATA to IDE converters with Netware 5
Replies
18
Views
280
goombawaho
goombawaho

Part and Inventory Search

Sponsor

Back
Top