WinLogon adds default certificate to "MY" store. Why, and how to disable?

From: Jakub Gwozdz (gwozdziu_at_rpg.pl)
Date: 05/23/05

Next message: Jakub Gwozdz: "Re: WinLogon adds default certificate to "MY" store. Why, and how to disable?"

Previous message: Valery Pryamikov: "Re: Hash of Public key"
Next in thread: Jakub Gwozdz: "Re: WinLogon adds default certificate to "MY" store. Why, and how to disable?"
Reply: Jakub Gwozdz: "Re: WinLogon adds default certificate to "MY" store. Why, and how to disable?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 23 May 2005 16:13:56 +0200

Hi.
There's the scenario:

a) User has logged in (by keyboard, no sc involved)
b) User opens IE settings to examine cert stores, remove all certificates from personal ("My") store.
c) Starts regmon/filemon from sysinternals.com with filter "winlogon.exe" to watch winlogon activity
d) Inserts smart card with default key-cert container and waits 10-15 seconds
e) Stops regmon/filemon logging.
f) Examines cert stores again, and tadaaa - certificate has been automagically added to My store.
g) Examines regmon/filemon logs to make sure, that responsible process was WinLogon.

Could anyone say, what was the intention of this behavior, and how to disable this feature?

Best regards
Jakub Gwóźdź

Next message: Jakub Gwozdz: "Re: WinLogon adds default certificate to "MY" store. Why, and how to disable?"

Previous message: Valery Pryamikov: "Re: Hash of Public key"
Next in thread: Jakub Gwozdz: "Re: WinLogon adds default certificate to "MY" store. Why, and how to disable?"
Reply: Jakub Gwozdz: "Re: WinLogon adds default certificate to "MY" store. Why, and how to disable?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]