[THIN] Re: Security risk

Excellent. Thanks for the response Rick. I think our direction will be the same as yours.

 

 

From: thin-bounce@freelists.org [mailto:thin-bounce@freelists.org] On Behalf Of Rick Mack
Sent: Thursday, October 16, 2008 7:24 AM
To: thin@freelists.org
Subject: [THIN] Re: Security risk

 

Hi Bill,

 

The security risk is there, it isn't huge but it is giving non-admin users a privilege that they would normally only have on the console (session 0).

 

But it's a difficult choice between making an application run for non-admins and opening a small but not inconsequential hole in your security. If it's any consolation, we've been assigning this privilege to students in several schools (AutoCAD etc) and despite considerable entrpeneurialism by the students it hasn't proven to be an embarassment.

 

regards,

 

Rick

 

--
Ulrich Mack
Quest Software
Provision Networks Division

 

On Thu, Oct 16, 2008 at 12:46 AM, Beckett, William (Bill) <WBECKETT@steelcase.com> wrote:

What is the inherent security risk with allowing access to "Create Global Objects" within a citrix environment?