19.12.2012 Views

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

IT Baseline Protection Manual - The Information Warfare Site

SHOW MORE
SHOW LESS

You also want an ePaper? Increase the reach of your titles

YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.

Threats Catalogue Deliberate Acts Remarks<br />

____________________________________________________________________ .........................................<br />

T 3.18 Sharing of directories, printers or of the<br />

clipboard<br />

When using the file or print manager or the clipboard on a computer running<br />

Windows for Workgroups, operative errors are possible when sharing<br />

directories, printers or pages of the clipboard. This can result in resources<br />

being shared unintentionally. <strong>The</strong> necessary password protection may be<br />

applied incorrectly or not at all if the user has not been sufficiently informed<br />

of the peer-to-peer functionality in Windows for Workgroups.<br />

When using Windows 95, access rights have to be granted explicitly for a<br />

sharing, so that every user has to decide if and to whom access will be<br />

allowed. For Windows NT only one administrator can share files or<br />

directories.<br />

As shared resources (except for the pages of the clipboard) are generally<br />

visible to all participants, other participants can detect and abuse this situation.<br />

It is possible for confidential data to be read, changed or deleted without<br />

authorisation. For instance, if a directory was shared with write access and<br />

without password protection, it would be possible to store files in that<br />

directory until the capacity of the hard disk was exhausted.<br />

It should be noted that a shared directory will be shared automatically, if the<br />

option "Share during next start-up " is activated, without the user noticing this.<br />

For Windows 95 and Windows NT, the deactivation of the sharing must not<br />

be forgotten. In this case, the sharing must be deactivated explicitly, otherwise<br />

it will remain active even after a restart of the system.<br />

Example:<br />

After installation of the WfW user interface within a server-based LAN which<br />

was not accompanied by training, about 10% of all users shared the entire hard<br />

disk (root directory C:\).<br />

____________________________________________________________________ .........................................<br />

<strong>IT</strong>-<strong>Baseline</strong> <strong>Protection</strong> <strong>Manual</strong>: Oktober 2000

Hooray! Your file is uploaded and ready to be published.

Saved successfully!

Ooh no, something went wrong!