D
Doug Fox
When reviewing the recommended security settings for XP Professional, some settings are shown as <not defined>.
According to Microsoft's Windows XP Security Guide - http://www.microsoft.com/technet/security/prodtech/windowsxp/secwinxp/xpsgch03.mspx
Policy settings that are not specified for specific environments are sometimes defined at the domain level, as described in Chapter 2, "Configuring the Active Directory Domain Infrastructure." Other policy settings that are listed as Not Defined in this chapter (Chapter 3: Security Settings for Windows XP clients) are treated in this manner because the default value is sufficiently secure for that particular environment. Also, undefined policy settings in these Group Policy objects (GPOs) facilitate the deployment of applications that need to modify settings during installation. For example, enterprise management tools may need to assign specific user rights to the local service accounts on managed computers. The guidance in this chapter consists of recommendations, and you should always carefully consider your business needs before you make any changes in your environment.
What if the workstation is a standalone workstation and connecting to the Internet. It does not have the GPO pushes either site or domain policy to it. What happens to its security?
Any pointers/suggestions are appreciated.
According to Microsoft's Windows XP Security Guide - http://www.microsoft.com/technet/security/prodtech/windowsxp/secwinxp/xpsgch03.mspx
Policy settings that are not specified for specific environments are sometimes defined at the domain level, as described in Chapter 2, "Configuring the Active Directory Domain Infrastructure." Other policy settings that are listed as Not Defined in this chapter (Chapter 3: Security Settings for Windows XP clients) are treated in this manner because the default value is sufficiently secure for that particular environment. Also, undefined policy settings in these Group Policy objects (GPOs) facilitate the deployment of applications that need to modify settings during installation. For example, enterprise management tools may need to assign specific user rights to the local service accounts on managed computers. The guidance in this chapter consists of recommendations, and you should always carefully consider your business needs before you make any changes in your environment.
What if the workstation is a standalone workstation and connecting to the Internet. It does not have the GPO pushes either site or domain policy to it. What happens to its security?
Any pointers/suggestions are appreciated.