PC Review


Reply
Thread Tools Rate Thread

Winreg is not restricting acces to Remote Registry

 
 
Dave Berry
Guest
Posts: n/a
 
      30th Aug 2004
I have modified the WINREG key on a remote Windows 2000
Professional workstation, so that only a user (user1), who
is not a member of local administrators (or any
administrative group)is added to the WINREG key located at
HKLM\System\CurrentControlSet\Control\SecurePipeServers\win
reg.

In additions there are no users listed under
AllowedPaths\Users.

Next, I run Regedit on my local computer, and connect to
the remote registry.

My question is: With only User1 added to the WINREG key,
why do I have full control to the remote registry's
HKEY_USERS hive? I am able to add without restruction
under .DEFAULT.

Thanks in Advance
Dave


Microsoft says that the permissions on this winreg key
determine who is
allowed to remotely connect to this registry. It also
says that you can put
addtional paths under the AllowedPaths subkey under winreg
if you don't want
to change the permissions of winreg. By doing this you
can allow certain
keys to be remotely accessible.

I have 2 computers that are in the same domain. Both are
NT Servers.


On machine A, I have only local administrators access to
the winreg key.
This would mean that only administrators of machine A
would be allowed to
remotely access the registry on that machine. Under the
winreg key, there
is the AllowedPaths key. For the value of Machine under
this key, I added
the path to the following key "Software\test" which is a
key on machine A
that has everyone access to it.


Now, on machine B, I am logged onto the machine as a
domain user, who is not
an administrator of machine A. According to MS
documentation, since
"Software\test" is listed in the AllowedPaths key, I
should be able to
access it remotely. Unfortunately, I cannot, I can
connect to the registry
on machine A using regedt32 but can only open the HKLM
key. Everything
under there, is greyed out and I cannot access it.


Can anyone help me with this? I am trying to access a key
on the remote
machine without changing the permissions on the winreg key.


Thanks,
sam



 
Reply With Quote
 
 
 
Reply

Thread Tools
Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Winreg packets geezus Windows XP Networking 0 24th Mar 2006 08:03 AM
Winreg packets geezus Windows XP Work Remotely 0 24th Mar 2006 07:58 AM
Local Service, winreg, remote registry =?Utf-8?B?Sm9zZXBoIENob3c=?= Windows XP Work Remotely 2 24th Jun 2005 08:22 AM
Winreg is not restricting acces to Remote Registry Dave Berry Microsoft Windows 2000 Registry 0 30th Aug 2004 02:36 PM
SUBINACL and the WINREG key. Carl Hilton Windows XP Security 1 1st Apr 2004 07:50 AM


Features
 

Advertising
 

Newsgroups
 


All times are GMT +1. The time now is 02:13 AM.