Windows 7 Thread, deny shortcuts to the C: in Technical; Hi guys,
I know this has been discussed a little on here in other threads but I couldn't really find ...
12th March 2014, 09:40 AM #1
deny shortcuts to the C:
I know this has been discussed a little on here in other threads but I couldn't really find a definitive answer so I hope you don't mind me posting this question again for further discussion.
We currently have c: hidden and we have used the reg edit to remove the "create shortcut" in the context menu. (cant disable right click as it affects other programs). This is all good, however if they create a shortcut at home and bring it in on a memory stick they will still have access to c:
Whats peoples thoughts on this and the best way to prevent this ?
12th March 2014, 09:46 AM #2
My thought is that this is a losing game. Even if you lock this down all it takes is one of the apps you have to run to use a non-standard browsing tool to allow people to see the c:\ drive. Secure the c:\ drive properly using NTFS permissions (users only need to be able to write to their own user area), remember that there are (or should not be) any state secrets on there anyway, and get on with your day. That's what we do here and we've not had any problems.
12th March 2014, 09:48 AM #3
The best solution: Use GPO to hide the drive, but don't restrict access to it (it breaks the search functionality of the start menu). Ensure that your users are not running as admins and use GPO to hide and restrict access to folders that they do need in program files.
12th March 2014, 10:07 AM #4
Its annoying cos all Microsoft would need to do is prevent the creation/use of shortcuts to hidden drives.... problem solved...
12th March 2014, 10:47 AM #5
I honestly don't get what is so annoying about it. The students already know that your computers have a local hard drive installed with files on it. If they can change things you don't want them to change then the problem is that your permissions are set incorrectly, not that the students can see something they already know is there.
12th March 2014, 10:50 AM #6
Aye generally we don't bother. C's hidden for users, Permissions locked on it. Nothing they can do/touch/edit, that they couldn't run themselves anyway.
Don't think you can physically lock the shortcut issue without a lot of permissions breaking stuff
By Matthew2013 in forum Windows Server 2012
Last Post: 5th November 2013, 06:53 PM
By agarabaghi in forum O/S Deployment
Last Post: 30th May 2012, 05:59 PM
By Gilleen in forum Windows 7
Last Post: 17th October 2011, 10:02 AM
By FN-GM in forum Scripts
Last Post: 21st December 2007, 06:27 PM
By MartinDixon in forum Windows
Last Post: 16th February 2006, 12:36 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)