=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-


    Date: Чт, 13 янв 2000  09:52:31

   От: Jitendras <Jitendras@INF.COM>

 Кому: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

 Тема: Permissions for a share prevail after deleting the user???

--------------------------------------------------------------------------------




We have seen a serious problem here on a standalone server.



Scenario : NT Server 4.0 SP5 standalone server - guest enabled without

password.



Problem definition : Users who were deleted still have access to the shares

shared as "Network-Full control" and NTFS permissions for "Everyone-full

control". This is serious as the connections are possible without password

for these users.



Reproducing the problem :



Share a directory "XYZ"  as "Myshare"  with following permissions :



NTFS : administrators Full control; NETWORK Full control

Share : NETWORK Full control



Create a user  "TEST" on the server with a password. He is  member of only

user group.



Try  to connect to "Myshare" share of this server from any NT machine as

user "TEST". It asks for the password and then connects and has full

control.



Now delete user TEST.



Try to connect to myshare of the server from any other NT machine as user

"TEST". It doesn't ask for any password and  It connects and has full

control over Myshare.



Restarting the server still allows connection as TEST without password to

Myshare with full control. Also, other guest users don't have any access.



Only users who were earlier defined  and are deleted now can access this

share and that too without password!



Can you please explain this and suggest a solution to stop it.



Thanks and regards.



Jitendra Sangharajka

Lead System Administrator

Infosys Technologies Limited

IS - KEONICS

**: jitendras@inf.com

* Work : (80) 8520261 Ext. 1105

* Res. : (80) 6659196