Windows registry security tips

Posted: Nov 26, 2009 |Comments: 0 | Views: 277 |

Whenever I bring up registry security, the inevitable question is always how to prevent users from accessing the registry. You can't. Remember that the registry contains settings that the user must be able to read for Windows to work properly. Users also must have full control of their profile hives for the operating system and applications to save their preferences. You can't prevent access-nor do you want to prevent it. The best you should hope for is limiting users' ability to edit the registry using Regedit or other registry editors.The most elegant way to prevent access to Regedit is by enabling the Prevent access to registry editing tools policy. When users start Regedit, all they see is an error message that says "Registry editing has been disabled by your administrator." The problem with this policy is that not all registry editors honor this policy. Nothing prevents a determined user from downloading a shareware registry editor, of which there are plenty, and using it. Another possibility is using Software Restriction Policies, which you can learn more about in Help and Support Center. Even this doesn't prevent users from running shareware registry editors unless you use Software Restriction Policies to completely restrict them to a short list of acceptable applications.Securing local access to the Windows registry is one thing; securing remote access is another. Windows gives members of the local Administrators and Backup Operators groups remote access to the registry. Because the Domain Admins group is a member of each computer's local Administrators group, all domain administrators can connect the registry of any computer that's joined to the domain. Also, Windows now limits remote access to the registry more than earlier versions of Windows.There might be limited scenarios in which you want to open remote access to computers' registries. For example, in Active Directory, you might create an administrators group for each organizational unit and want to give it the ability to edit computers' registries if they belong to the organizational unit. To enable that group to remotely edit a computer's registry, add that group to the ACL of the key HKLM\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg. The problem you're going to run into is that although adding a group to winreg allows remote access, each key's ACL still determines which keys the group can change. So to allow a remote user or group to change a setting on the computer, add that user or group to the local Users, Power Users, or Administrators group.

Retrieved from "http://www.articlesbase.com/computers-articles/windows-registry-security-tips-1509180.html"

sulamita berrezi - About the Author:

Write on seo article directory with wordpress and immagini cellulari.

Questions and Answers

Rate this Article

0 vote(s)

Source: http://www.articlesbase.com/computers-articles/windows-registry-security-tips-1509180.html

Article Tags:

registry

windows

security

How to thoroughly remove Windows security centre 2009 from your PC?

Do you want to completely uninstall Windows security centre 2009 from the computer but encountering kinds of uninstall problems? If this is the case for you then you may be at the right place here for step-by-step Windows security centre 2009 uninstall tutorials.

By: Jack zl Computers> Softwarel Sep 05, 2010

Remove the Tough Windows Security System 2010 - Best Guide

Many people have such a problem – when trying to uninstall Windows Security System 2010 thru the Windows "Add/Remove programs" or with its package uninstallers, some may unable to see this software listed in the "Add/Remove programs list", or some may still be able to find this program appears each time on boot after the un-installation.

By: ianchan1985110l Computers> Softwarel Aug 27, 2010

How to Uninstall Fake Windows Security 2011—Remove Windows Security 2011 Fake antivirus Manually

What is fake Windows Security 2011? How do I remove Windows Security 2011 completely? This is a manual removal to help you get rid of Windows Security 2011 virus.

By: Venessa Wellsl Computers> Securityl Apr 13, 2011

Fake Windows Security Center, remove fake program, Best Spyware Scanner

Fake Windows Security Center serves as a horrible spyware that is designed to automatically get into your system and collect your personal information. If your computer has been infected by Fake Windows Security Center, the best method to completely get rid of it is to install a trusted and powerful Fake Windows Security Center Remover on your PC.

By: Elisal Computers> Softwarel Apr 08, 2011

Uninstall/Remove Windows Security & Control - greatest method to Uninstall/Remove Windows Security & Control Rogue Virus

By: bus smitl Computers> Securityl Jan 19, 2011

What is Windows Security 2011 virus? how to manually remove Windows Security 2011?

What is Windows Security 2011 virus? how to manually remove Windows Security 2011?What is Windows Security 2011 virus?

By: janemssl Computers> Securityl Apr 09, 2011

Diablo 3 - A Closer Look

An in depth look at the new MMORPG from Blizzard Entertainment known as Diablo III, a long awaited release for Diablo fans.

By: swtorman90l Computersl Jun 01, 2012

Securing Your Business, Inside and Out

Most small businesses take advantage of computer technology, and it certainly can make things a lot easier for everyone within the business when you do so properly. Unfortunately, there are also a number of different problems that can occur as a result of the technology that you are using.

By: Jesus Mattsonl Computersl May 31, 2012

Remote Desktop Software Features

The remote desktop software is quite an amazing type of software with plenty of features that can come in handy at work or even at home. The feature lets you obtain remote access to an assortment of other computers, directly from the computer that you are using at the moment. This software is often used by people who work in an office or business setting.

By: jimtom705l Computersl May 29, 2012

What Is Remote Desktop?

Remote desktop software is a type of software that allows users to get access to a remote computer. Basically, if you have this software, you will have the ability to view the remote computer and also control it with the mouse you are using. A number of these software programs will also enable you to send documents to and from one computer to another.

By: jimtom705l Computersl May 29, 2012

Inexpensive Computer Ink Cartridges That Are In Accordance With ISO Standards

The second selection of pc ink cartridges is the compatible low-priced cartridges.

By: simon colel Computersl May 29, 2012

Cystinuria info

Cystinuria is an inborn error of amino acid transport that results in the defective absorption by the kidneys of the amino acid called cystine.

By: sulamita berrezil Healthl Dec 01, 2009

The indian state of Malwa

Malwa, the heartland of Central India, has a great creative past.

By: sulamita berrezil Travell Nov 28, 2009 lViews: 126

Cryotherapy technique

Cryotherapy is a technique that uses an extremely cold liquid or instrument to freeze and destroy abnormal skin cells that require removal.

By: sulamita berrezil Healthl Nov 27, 2009 lViews: 421

Carbo intolerance causes

Carbohydrate intolerance can be primary or secondary. Primary deficiency is caused by an enzyme defect present at birth or developed over time. The most common is lactose intolerance. Secondary deficiencies are caused by a disease or disorder of the intestinal tract

By: sulamita berrezil Healthl Nov 26, 2009

Discuss this Article

Author Box

sulamita berrezi has 55 articles online

Articles Categories