General discussion


Hidden Share Discovery

By davecoffin ·
What is a simple method for discovering hidden shares on a Win2K network?

This conversation is currently closed to new comments.

Thread display: Collapse - | Expand +

All Comments

Collapse -

by pattyizqui In reply to Hidden Share Discovery

Well if you mean specific to a certain machine, you can use the Computer Management MMC. Simply right-click My computer and choose Manage. Double-click Shared Folders and then click Shares. It will show you all of the Shares on that machine including the hidden ones.

Now if you mean through out the entire network located on many different servers, then I do not know a way.

Collapse -

by davecoffin In reply to Hidden Share Discovery

Thanks for the info. I was aware of the MMC Snap-in, but I didn't clarify. So I apologize for that.

What I'm wanting to know is how can a domain user or other non-authenticated user discover a hidden-share. I don't believe they can through the MMC Shared Folders Snap-In.

The issue is a security matter. My company has recently engaged a company to install a network app. In this app there are 3 folders that they setup required shares. They setup the shares unhidden, and with "Everyone" with Full Control.

I told them that is unacceptable, so I forced them to hide the share (which caused reinstallation of the App), but so far the app won't run unless Everyone group has full control. They vendor has (shockingly) denies understanding the glaring security issues. So, I am trying to demonstrate to them that even they the shares are now hidden, it is not secure. You know the old adage, "Security through obscurity is no security at all."

Thanks in advance.

Collapse -

by Curacao_Dejavu In reply to Hidden Share Discovery

I am missing something.

How are the users starting the app, If they start it via a shortcut, it means that there is a mapping, which means if they open my computer they would see the drivemapping and they would be able to connect to it and do their stuff (delete, write, etc etc).

What you can do is look at the files that really need to be at full controll, hopefully it's only the startup exe. The rest can be read-only, or change or whatever is needed. So you will have to go on a folder by folder basis. (for the share + the permissions)

Second if you don't want the mapping to be seen as I mentioned above, you have to use tweakui, there is a option there that you can make the driveletter invisible. (you still have to do the share and security on a folder by folder basis, can also file by file of course)

I had the same issue with a airline program about 2 years ago. The vendor simply wants the program to run, thats their bussiness, they don't think that users will damage the program (they must be dealing with only happy users).
What we did was using full controll and then step by step downgrade the permissions till we got the minimum where it would work. Also remember there are shares and permissions issues. When browsing to the shares and accessing a file the most restrictive of the 2 will apply. For example share:full control and permission:read will result to a read access.

Now regarding the original post I don't think they can, simply because although there are programs to do so, they would need administrative rights to install them to begin with. So I don't think thats a problem on a w2k network.


Collapse -

by TechKid In reply to Hidden Share Discovery

Sounds to me like lazy programming on their part.

Set the share permissions to full control but then try experimenting with the NTFS permissions. They would then be able to connect to the shares but you could impose limited NTFS permissions on the files inside so they couldn't delete files and what not.

Related Discussions

Related Forums