Mandatory profiles security breach?

[Guest]

Archived from groups: microsoft.public.win2000.security (More info?)

Hi all,

should this be treated as a bug in mandatory profiles? After following the
steps outlined in
http://support.microsoft.com/default.aspx?scid=kb;en-us;323368, I log on
with the user having the mandatory profile. Then, I go to the shared folder
where the mandatory profile is located, and rename ntuser.man back to
ntuser.dat. Then, my profile isn't mandatory anymore...

What NTFS permissions should be applied to the ntuser.man file, so the user
can't do this??

Thanks in advance,
Renato

 

[Guest]

Archived from groups: microsoft.public.win2000.security (More info?)

Try just giving them just read and execute to see what happens. --- Steve


"Renato Martins" <renatoalmeidamartins@nospam.ibest.com.br> wrote in message
news:udVCprfXEHA.2816@TK2MSFTNGP11.phx.gbl...
> Hi all,
>
> should this be treated as a bug in mandatory profiles? After following the
> steps outlined in
> http://support.microsoft.com/default.aspx?scid=kb;en-us;323368, I log on
> with the user having the mandatory profile. Then, I go to the shared folder
> where the mandatory profile is located, and rename ntuser.man back to
> ntuser.dat. Then, my profile isn't mandatory anymore...
>
> What NTFS permissions should be applied to the ntuser.man file, so the user
> can't do this??
>
> Thanks in advance,
> Renato
>
>