Read-Only production! Security classic! I believe you will like it!

Original post address:
Http://bbs.txwb.com/dispbbs.asp? BoardID = 143 & ID = 43705 & replyID = & skin = 1

Read-Only updates are not widely used !! For better use of read-only and security issues !! Our staff and Internet cafes are constantly working !! Security and read-only applications have been completed !!! In the past, everyone was worried that the system recorded the read-only permission ''. Then he used my shortcut to call it. It wasn't enough to operate my disk! You can get more gains in this article! Make sure you like self-reading! Remember, don't worry about setting it up! Some people write too much, so it looks messy! Now I will use QMenu as a read-only security usage article!

This section describes the implementation steps!

1: Read-Only permission settings!
2: Disable the formatting button! Disable CMD! Do not use system tools that are dangerous to permissions! (The following is a simple method)
3: Solve the input method problem! (All online games pass the test, no problem)
4: Prepare the QMENU game update software! And read-only permission calling tools (the following describes and provides download)
5: Set the QMENU .. Generally, it's just a Paster to show you what I 've done)
6: I want to report a BUG to Internet cafe staff! The first is the password of the read-only caller! Find an asterisk password viewer on the network to view the read-only password! Therefore, we recommend that you encrypt the software! Only Administrators can modify and view the information in it! There is also a shortcut! For example, add the "E: \ audition v1.6 \ patcher.exe" e :\ parameter to operate the read-only disk! So make a quick protection method for read-only users! Of course, if you are smart, you can throw all the shortcuts to the read-only disk! In this way, other people cannot modify it! Good method! Unfortunately, I still don't want to bother! Haha!

I will use the statements to explain the read-only permission settings! (Just a few words! Improve learning efficiency !! Haha)

1: Read-Only permission settings
First, make sure that your administrators Group has two users. Assume that you have two admin accounts, A and B, and Set Account B as the default account on the guest's computer, in this way, the customer has no operation permission on! (This indicates that our read-only disk does not have operation permissions)

Permission settings: assume that you are using account B now! Be sure to log out once (don't tell me to log out ?) Log on to the system with account A. For read-only disks, delete the permissions of all users first (by clicking the mouse: my computer -- tools -- Folder Options -- View -- remove simple file sharing), so that you can see the permissions in the disk! After deleting the right partition (Attribute-security tag ),

Add the users Group and set the permission (in the "advanced" option) to: traverse folders. read, run, read attributes, read extended attributes, and then add the permissions of account A to complete control.

OK, and then check "the project that can be applied to this display to replace the permission project of all sub-objects,

Change "administrators" of "current project owner" to "A" account. After this step is completed, click "OK"

Next is a waiting process. The system will reset the access permissions for all files on the read-only disk.

Choose "Group Policy"> "Security Settings"> "User Rights Assignment". (choose "method"> "Settings"> "Control Panel"> "Administrative Tools"> "Local Security Policy"> "Security Settings"> "User Rights Assignment)
Delete the administrators in "Getting ownership of A file or other objects" and add the "A" account to prevent others from obtaining ownership of the file except account A. This step is important.

Make sure the system has enabled the Secondary Logon Service! Start --- run --- enter SERVICES. MSC)

2: Disable the formatting button! Disable CMD! Do not use tools that are dangerous to permissions!

Disable formatting! Enter the system disk. I think the default is drive C! C: \ windows \ system32 \ shell32.dll extract the shell32.dll file!
If you use exclusive to modify (install exclusive software first), the following will be provided!

Exists, right click the file to be modified!
Use exclusive to edit resource --- resource -- conversation basket -- 28672 option -- start (& S) S to change to password! Select small s and press the AIT key to enter the desired digital password! Press and hold the AIT key to enter your password and replace it in DOS mode to prevent formatting !!

There is also a way to replace the shell32.dll file in WINDOWS mode!
Run CMD first

Ren c: \ windows \ system32 \ shell32.dll shell32.rar

Press enter and enter the command

Copy d: \ shell32.dll c: \ windows \ system32 \ shell32.dll

After modifying the SHELL32 file, press enter on drive d to prompt YES/NO/ALL to select YES.

Enter

Ren c: \ windows \ system32 \ shell32.rar shell32.dll

Restart

Disable CMD! (To prevent others from changing the permission password in the form of CMD! That's a big headache! Haha)

Login to the system with account! (The account with the read-only permission should be clear)
Delete all CMD permissions!
For details, click system disk (C: \ windows \ system32 \ CMD.exe, right-click Properties-security-delete all permissions in it! In this way, only the permission can be called! (Remember: Set CMD under account)

Someone will certainly ask him that he can use computer management and disk management to change the User Password even if he gives me the disk! This is the focus! I don't know what processes are called by these tools during routine maintenance? Don't talk nonsense!

Let's take a look at the importance of MMC.exe (on the System Disk c: \ windows \ system32 \ MMC.exe) to the system !!!! Delete the permission in the above method! Add account A permission !!! Here I will explain the so-called account A and Account B! Avoid getting confused like me! Account A is the account that you want to restrict the user's operation of the read-only disk and manage the read-only disk! Account B is the current user ~ The current account is used by the guest! Just delete the nusrmgr. cpl user icon (you can delete it in System Disk c: \ windows \ system32 \ nusrmgr. cpl! Basically, the system is in a safe state! If you meet a hacker like a hacker in Heiji or a strong system, it cannot be prevented! You should also understand this! Prevent intermediate cainiao! Like me !! Haha!

3: Input Method problems!

I don't know if the problem with input methods is switching or something! I will introduce you to a tool! Download now! I don't have any switching or usage problems after I use it! For more information, see the instructions in the Toolkit !! The method of overwriting is to overwrite the file package's internat and indicdll. dll in the login account! I can! I don't know !! If not, you can only mount another hard disk to create a system disk! Copy the file to this directory! Overwrite internat and indicdll. dll on the System Disk c: \ windows \ system32 \

4: The QMENU game update software is introduced below! And read-only permission call tool!

Focus first! Read-only calling programs prevent the system from recording passwords and calling files at will! For more information, see here!

Extract the read-only update program! In the qmenu client (in fact, it is easy for me to manage it), start the read-only update calling program!

Enter your account and password for the read-only disk! Select the execution program of your QMenu client for the execution file name! This is an advantage! It can only be called using QMenu! Haha! The remaining settings are default!

Click Create shortcut (in the current directory button). the read-only update call will be OK! Remember not to delete the update caller! The program is called! In this way, after the QMenu is usually prepared

OK. I don't understand! Learn how to use the QMenu Update Software on the homepage of Internet cafes! It feels great!

5: I want to capture a read-only image from my system! Haha! "Available in Sanya Changlong network City 』

Read-Only Input MethodHttp://bbs.txwm.com/viewFile.asp? Boardid = 190 & ID = 72030

QMenu:Http://www.txwb.com/Soft/rjxzj/200602/1.html

QMenu read-only update call:Http://www.txwb.com/Soft/rjxzj/200604/98.html

Exbench 6.50 Chinese version: http://soft.hackbase.com/view.asp? Id1_20050723exescope.rar

No way! Upload reached the limit! I am contacting the Administrator to upload these items! Sorry, boys! QQ: 196548445 for discussion! Don't want to open a group! There are too many groups .. Forgive me! I am online for 16 hours a day!

Problem feedback:

[1] problems found today! If the account created by some friends and the Administrator account on the Update Server are repeated, the update will fail! I hope you will pay attention to this! So remember not to use the same account as the server!

[2] it is best to put all shortcuts on the read-only disk! Avoid others' operations !! The advantage is that you can update the new shortcut directly from the server to the local! Free of charge! QMENU can automatically update the background! It is best to also store the QMenu client on the read-only disk ~ Avoid modifying your program! This is the focus!

[3] Why did you see the problem of formatting on the network! All of them are modifying SHELL32.DLL, but this is not realistic. It is even more unrealistic to add any virtual memory! At least it is unrealistic to read-only! How can this problem be solved! Find a small auxiliary system software! Set it to System Service startup! In this way, you cannot delete and end your software through the task manager! As long as the disk detects that a program is running, user formatting is prohibited! (You can remember that mmc.exe has been banned! In this way, he cannot start or close your service under the current account!

Service Management ToolsClick to browse this file