We're finally beginning to tighten security at my company and it occurred to me that anybody who is a domain admin can browse to anybody's C:\ drive by using the default C$ admin share. There are a lot of employees who would feel nervous if they knew admins could casually do such a thing remotely, so I'm wondering if any of you work for a company where that share is disabled via group policy or some other means? Are there negative unforeseen consequences to turning this off?
↧