Citrix Systems 1.8 manual 0HWDUDPH$GPLQLVWUDWRUªV *XLGH

￿￿￿￿￿ 0HWD)UDPH￿$GPLQLVWUDWRUªV *XLGH

If no arguments are specified, query acl checks all local drives and then checks the HKEY_LOCAL_MACHINE portion of the system registry.

Any files or registry keys that non-administrator users can write to are reported in

;￿￿￿￿￿￿￿':;32￿BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB2%the-(&7,1+(5,7following;￿￿￿￿￿￿￿?(YHU\RQH￿￿￿￿￿&￿?format:$&&2817￿￿ ),/(:WVUY&QILJ$XWRH[HFRW￿LQL￿V\V￿EDW

Query acl also audits the MetaFrame execute list (created and maintained by the Application Security utility) to verify that no executable files in the execute list are writable by users.