Re: Being logged on as admin and user at the same time (in XP)?

From: Roger Abell (mvpNOSpam_at_asu.edu)
Date: 01/06/05

• Next message: Herb Martin: "Re: Being logged on as admin and user at the same time (in XP)?"
• Previous message: Roger Abell: "Re: Being logged on as admin and user at the same time (in XP)?"
• In reply to: gaikokujinkyofusho_at_gmail.com: "Re: Being logged on as admin and user at the same time (in XP)?"
• Next in thread: Herb Martin: "Re: Being logged on as admin and user at the same time (in XP)?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Thu, 6 Jan 2005 08:43:59 -0700

OK. So AIUI you were asking, if I have an instance of an
admin account in use (switched out or via RunAs) but am
logged in as a limited user, am I increasing the risk level
from what I am doing in the limited account (due to the
existence of the admin context that is in use).
I believe the answer is a qualified No. The process contexts
are kept separate. The qualified part is that in the RunAs
case there is a chance that something you are doing as the
limited user may notice the other process that was started
by RunAs and find a way to force-feed input into it to then
cause things to happen in the other context - but this would
be fairly sophisticated and not likely from run of the mill
malware code.

-- 
Roger Abell
Microsoft MVP (Windows  Security)
MCSE (W2k3,W2k,Nt4)  MCDBA
<gaikokujinkyofusho@gmail.com> wrote in message
news:1104828564.641424.32910@z14g2000cwz.googlegroups.com...
> Oops, sorry about the ambigous post, but you answered my question.  I
> just wanted to know if that "switched out of admin account" would allow
> malicious "things" (spyware, viruses, etc) to compromise my computer
> using admin access (via the switched out of admin account).
> Thanks for your help!
>
> Cheers
>
> -Gaiko
>

---

• Next message: Herb Martin: "Re: Being logged on as admin and user at the same time (in XP)?"
• Previous message: Roger Abell: "Re: Being logged on as admin and user at the same time (in XP)?"
• In reply to: gaikokujinkyofusho_at_gmail.com: "Re: Being logged on as admin and user at the same time (in XP)?"
• Next in thread: Herb Martin: "Re: Being logged on as admin and user at the same time (in XP)?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Being logged on as admin and user at the same time (in XP)? ... logged in as a limited user, am I increasing the risk level ... existence of the admin context that is in use). ... The qualified part is that in the RunAs ... > just wanted to know if that "switched out of admin account" would allow ... (microsoft.public.windows.server.security) Re: Run As Administrator fails ... > The runas dialog box has no checkbox when I run as an admin account. ... >>> As a limited user, ... (microsoft.public.windowsxp.general) what happens on no admin passwords? ... They've got passwords for their users (though I got to persuade them ... There are however no passwords for the administrator users, ... I don't manage to use "runas" for one of the admins. ... Is it possible to login remotely in an admin account without password? ... (microsoft.public.windowsxp.security_admin) Re: Run As Administrator fails ... The runas dialog box has no checkbox when I run as an admin account. ... >> As a limited user, ... (microsoft.public.windowsxp.general) Re: runas and registry/profile access problem ... ... but I have a problem with runas itself. ... I hope my explanation makes sense:). ... instead of each user's profile. ... admin account profile) using windows explorer. ... (microsoft.public.windowsxp.help_and_support)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > comp.os.ms-windows.nt.admin.security  > 2005-01