A Windows XP help forum. PCbanter

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Go Back   Home » PCbanter forum » Microsoft Windows XP » Security and Administration with Windows XP
Site Map Home Register Authors List Search Today's Posts Mark Forums Read Web Partners

Allowing Non-Admin Users to install Active X?



 
 
Thread Tools Display Modes
  #1  
Old March 8th 10, 08:26 PM posted to microsoft.public.windowsxp.security_admin
Brent
external usenet poster
 
Posts: 35
Default Allowing Non-Admin Users to install Active X?

Hi,

We have set up a single windows host with several accounts on it. Each user
connects via Remote Desktop with their account is allowed to perform client
side type of work including browsing the internet and internal internet
applications. Some of these applications contain Active X controls.

Since we do not give each user local admin privileges as we do not want them
installing any application that would conflict with other users on the box,
however, we feel that allowing them to download and install safe active x
controls from our internal applications would be ok.

Is there a way to set this sort of permission up? Can we trust certain
domains that allow full active x installation assuming that they come from
those domains?

Thanks!


--
Thanks!
Ads
  #2  
Old March 9th 10, 09:08 AM posted to microsoft.public.windowsxp.security_admin
Anteaus
external usenet poster
 
Posts: 1,330
Default Allowing Non-Admin Users to install Active X?


I understand this may be possible with IE8. However, it largely defeats the
purpose of limited-user working since activex malware is one of the biggest
risks associated with IE.

An alternative might be to roll-out the activex code using an
install-tracker such as InstallRite. If the package is installed as admin
this should overcome the problem. http://epsilonsquared.com

Basically, the coders need a kick in the pants, and to be told to stop using
practices which demand a nil-security computer.

"Brent" wrote:

Hi,

We have set up a single windows host with several accounts on it. Each user
connects via Remote Desktop with their account is allowed to perform client
side type of work including browsing the internet and internal internet
applications. Some of these applications contain Active X controls.

Since we do not give each user local admin privileges as we do not want them
installing any application that would conflict with other users on the box,
however, we feel that allowing them to download and install safe active x
controls from our internal applications would be ok.

Is there a way to set this sort of permission up? Can we trust certain
domains that allow full active x installation assuming that they come from
those domains?

Thanks!


--
Thanks!

 




Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is Off
HTML code is Off






All times are GMT +1. The time now is 10:51 AM.


Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Copyright ©2004-2024 PCbanter.
The comments are property of their posters.