NOTE: I am running Windows XP Professional with "Simple File Sharing" disabled.
Here is how to fix the Retina Scan Result:
"Microsoft Windows DCOM Object Registry Permissions":
Description - This check verifies that a DCOM object doesn't have access permissions that allow non-administrator users to change the security settings.
How To Fix - Ensure that only Administrators and System accounts have greater than "read" access for any DCOM object. (this fix does not explain much see below for how to do it)
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
On 1/8/2008 11:46:30 AM eEye Digital Security wrote:
Hello Jeff,
Ensure that only Local Administrators Group and Local System are permitted to have greater than "read" access for any DCOM object, and that Local Users access permissions are set to "read".
1. Click Start, Run, type "regedt32", and click OK.
2. Find the key HKEY_LOCAL_MACHINE\Software\Classes\AppID
3. Select it, Right Click, then select Permissions.
Ensure that only Local Administrators Group and Local System are permitted to have greater than "read" access for any DCOM object, and that Local Users access permissions are set to "read". Can you check this key? Thanks!
Best Regards,
Jon
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
NOTE: (for Local Users stated above simple add in "Users" only.) w
Final 3 items in the Security Tab should only be: Administrators, System, and Users.