Shared resources higher-level access control
- From: "Stefano Faini" <s.faini@xxxxxxxxxxxxxxxx>
- Date: Tue, 13 Jun 2006 17:33:55 +0200
Hi,
I developed a gina.dll which adds biometric support to Windows Logon.
Users can logon only by fingerprint authentication, or, if specifically
allowed by a configuration console, by standard user/password.
Only a local machine administrator can access the workstation without
permission and unistall the custom gina.
The problem is that an "unauthorized" Network administrator can still access
the machine's network resources (and registry entries) from an external
terminal with his valid user/passowrd and clean up the custom logon.
More generally, I need that no "unauthorized" user can access the machine's
network resources (shared dirs, files ecc.) from extern if not specifically
allowed by my Logon configuration console, even if he fills his client-side
credential window with valid user/password.
I wonder if there is ANY way to do this, hooking some dlls or anything
else..
Any help will be really appreciated.
Thanks,
Stefano
.
- Prev by Date: Re: Using SCHTASKS for remote launching of apps...
- Next by Date: Extracting decrypted hash from PKCS#7 detached signature
- Previous by thread: SigCheck like functionality.
- Next by thread: Extracting decrypted hash from PKCS#7 detached signature
- Index(es):
Relevant Pages
|
