Re: How to Stop a Service From Impersonating Other Users
From: S. Pidgorny
Date: 11/27/05
- Previous message: Roger Abell [MVP]: "Re: How to Stop a Service From Impersonating Other Users"
- In reply to: Will: "Re: How to Stop a Service From Impersonating Other Users"
- Next in thread: Roger Abell [MVP]: "Re: How to Stop a Service From Impersonating Other Users"
- Reply: Roger Abell [MVP]: "Re: How to Stop a Service From Impersonating Other Users"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 27 Nov 2005 10:29:21 +1100
G'day:
"Will" <DELETE_westes@earthbroadcast.com> wrote in message
> 1) I still don't hear a clear answer to the question of whether a service
> needs a *password* for a given userid in order to be able to grab that
> user's security context.
No, it doesn't need a password.
>From the doco
(http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/ServerHelp/fa01a57a-a0ef-4cb9-af9a-f30182a25bf7.mspx):
Act as part of the operating system
Description
This user right allows a process to impersonate any user without
authentication.
-- Svyatoslav Pidgorny, MS MVP - Security, MCSE -= F1 is the key =-
- Previous message: Roger Abell [MVP]: "Re: How to Stop a Service From Impersonating Other Users"
- In reply to: Will: "Re: How to Stop a Service From Impersonating Other Users"
- Next in thread: Roger Abell [MVP]: "Re: How to Stop a Service From Impersonating Other Users"
- Reply: Roger Abell [MVP]: "Re: How to Stop a Service From Impersonating Other Users"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
Loading
