|I have a Win2008 file server. I won't go into |
why it's set up like this, but there is one share
with many different rights assigned with NTFS.
Access-based enumeration is enabled.
Our IT department is bombarded with calls
about people that need admin rights to do this
or that. (They all had admin rights until
6months ago-ish). Plus, I've seen dozens of
machines run by non-admin users that were
riddled with spyware/viruses. So I decided to
give most users admin rights. Please don't
lecture me on why this is a terrible idea.
I added the following line to the login script:
net localgroup administrators /add
Well, this morning, everyone comes in and
can see ALL the folders on the server.
Thankfully, they can't see any of the files
within, but they can see the folders, and it
freaks people out when yesterday there were
four folders and today there are 20.
So I updated the login script, deleting the
group from local admins. Now when I log in as
a member of that group, I do NOT have local
admin rights, but I can still see all the folders
on the server.
It's not an ABE issue, because I can actually
access the folders, I just can't see anything in
What can I do?