Tale politica può provenire dai Benchmark CIS , ma è destinato ai server , non alle workstation degli utenti. Per citare il §2.3.13.1 (e annotare le sezioni Profilo Applicabilità e Impatto ):
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled' (Scored)
Profile Applicability:
- Level 1 - Domain Controller
- Level 1 - Member Server
Description:
This policy setting determines whether a computer can be shut down
when a user is not logged on. If this policy setting is enabled, the
shutdown command is available on the Windows logon screen. It is
recommended to disable this policy setting to restrict the ability to
shut down the computer to users with credentials on the system. The
recommended state for this setting is: Disabled.
Rationale:
Users who can access the console locally could shut down the computer.
Attackers could also walk to the local console and restart the server,
which would cause a temporary DoS condition. Attackers could also shut
down the server and leave all of its applications and services
unavailable.
...
Impact:
Operators will have to log on to servers to shut them down or restart them.
L'idea è che un utente potrebbe non avere i privilegi per accedere a un server, ma con accesso fisico, sarebbe in grado di spegnerlo. Considera il ragazzo HVAC che lavora nella tua sala server, ecc. Ecc.
È ragionevole consentire agli utenti di chiudere le workstation.