I have a W2K3 server with students accessing this by terminal server on thinclients.
I thought I had tightened up the security of the server sufficiently enough so that they cannot browse and access the other users My Documents folders. The My Documents for all users has been redirected for to a 'Shares' folder and when they logon for the first time it creates their folder. I had to assign 'Modify' access for users to this folder to be able to create the folder. These redirection changes were only required as Teachers needed 'Full Access' to the Students files which they could not have with no Admin rights if left to the standard Documents & Settings folder.
Through Group Policy I have limited the students from browsing via Network Neighborhood.
I hope that is enough background of my TS server setup - my problem now is that a teacher has identified that if a student opens Word | File | Open, they can type in a UNC path ie servernameetc that students can access other students files.
Is there any way I can stop this access? I have looked over the Group Policies but Microsoft do not appear to have thought of this 'loophole' that may not be wanted.
May 22, 2005 8:00 PM
May 24, 2005 8:49 PM