-
August 28th, 2010, 07:27 AM
#16
Re: [RESOLVED] Get path of a user's desktop if running as admin
So do they [at Microsoft] name registry keys with those text versions of user token SIDs?
Logged in user SID, not 'user token SID' whatever it is. And regarding 'do they?', I believe the answer is quite apparent. Yes, they do. Do load user's hive under textual SID name. I'm not sure what do you mean by 'security breach', but the key access is granted for SYSTEM, Administrators and user himself. Nobody else. Do you see any problem with security here?
Best regards,
Igor
-
August 29th, 2010, 02:03 AM
#17
Re: [RESOLVED] Get path of a user's desktop if running as admin
Originally Posted by Igor Vartanov
Do you see any problem with security here?
Yes, I thought Microsoft were striving to achieve user account isolation with each new release of Windows. In this case, an unprivileged process can obtain a path to another user account (like your code has illustrated). And that's what I meant by a security breach. Before you posted your code I was about to reply that I was unable to find a solution to something that is impossible, but you beat me to it... Your approach was very cool though.
-
August 29th, 2010, 02:11 PM
#18
Re: [RESOLVED] Get path of a user's desktop if running as admin
Sorry, but I still don't get it. Do you or don't you see a problem when user's hive is accessible for SYSTEM and Administrators? Are those 'unprivileged' or not in your vision of ideal security?
Best regards,
Igor
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|