Powershell 1.0 and Windows 2003 Server

Steve Brant · External Since: Aug 24, 2009 Posts: 1

Does installing PowerShell 1.0 on Windows 2003 Server (both fully patched,
with default settings) change the vulnerability profile of the Windows
platform significantly?

If so, are there some steps that can be taken to mitigate the
vulnerabilities? I am aware of the script signing settings in regard to
running scripts. Essentially, my question is whether or not PowerShell
exposes Windows internals any more than they already are?

Thanks,
Steve

Nir Valtman · External Since: Sep 05, 2009 Posts: 1

Hello Steve,

If your OS is patched AND hardened then the vulnerability profile of the
Windows
platform is not significant.
If you want to raise the level of the security, allow NTFS permissions only
to specific groups such as admins. In addition, it would be better if you
sign the scripts.

--

Nir Valtman
http://blogs.microsoft.co.il/blogs/valtmanir/
---------------------------
Do you think that information security is expansive? Try to ignore it

"Steve Brant" wrote:

> Does installing PowerShell 1.0 on Windows 2003 Server (both fully patched,
> with default settings) change the vulnerability profile of the Windows
> platform significantly?
>
> If so, are there some steps that can be taken to mitigate the
> vulnerabilities? I am aware of the script signing settings in regard to
> running scripts. Essentially, my question is whether or not PowerShell
> exposes Windows internals any more than they already are?
>
> Thanks,
> Steve