Welcome to MSDN Blogs Sign in | Join | Help

Browse by Tags

All Tags » Security » Nifty Win32 tricks.   (RSS)

What's wrong with this code, part 20: Yet another reason that named synchronization objects are dangerous, the answers

Microsoft can be quite obsessive about instrumentation and metrics. We have a significant body of tools that perform static and dynamic analysis on our operating systems. Some of these tools (for example prefast and FxCop ) are public, some are not. Friday Read More...
Posted Monday, May 14, 2007 12:19 PM by LarryOsterman | 19 Comments

Why does KB 118626 use AccessCheck to check if you're a member of the administrators group?

Eagle Eyed reader Jens Geyer sent me an email yesterday asking: There's a KB article, where there is an example code how to determine if the current process/thread is running from admin account. The sample code changed in the newest revision of that KB Read More...
Posted Wednesday, March 14, 2007 8:38 AM by LarryOsterman | 8 Comments

Interacting with Services

In the comments for my first services post, someone asked about the SERVICE_INTERACTIVE_PROCESS flag that can be specified for the CreateService API. This flag allows the user to specify that the service should be allowed to interact with the logged on Read More...
Posted Wednesday, September 14, 2005 9:30 AM by LarryOsterman | 13 Comments

Why did I say that the Date&Time control panel applet was a security hole waiting to happen?

In response to a comment I'd made on Raymond's post about the Date/Time CPL : And what's even neater is that it's a security hole waiting to happen - the reason the dialog pops up when you're a LUA user is that they're enabling the set date&time privilege Read More...
Posted Wednesday, June 22, 2005 12:33 PM by LarryOsterman | 22 Comments

Why is there a GENERIC_MAPPING parameter to the AccessCheck API?

Ok, back to techie stuff. I recently received the following piece of mail sent to an internal mailing list: How is GenericMapping used by AccessCheck function? I thought it would be used to map GENERIC_XXX rights in the ACEs contained by the security Read More...
Posted Tuesday, September 21, 2004 4:45 PM by LarryOsterman | 1 Comments

How do I open ports in the Windows Firewall, part 3

This is the 3 rd and final article in my discussion of how the WMC product opened holes in the Windows firewall to enable the WMC clients to access the WMC HTTP server. In my last article , I had found an INetConnection object, which had a “guidId” property Read More...
Posted Wednesday, July 28, 2004 5:08 PM by LarryOsterman | 14 Comments

How do I open ports in the Windows Firewall, part 2

This is the second post in a series of posts that explain how the Windows Media Connect project opened up a particular port through the XP SP2 firewall. In the last post , we had figured out how to actually open the port, but I hadn’t discussed how you Read More...
Posted Tuesday, July 27, 2004 8:10 PM by LarryOsterman | 5 Comments

How do I open ports in the Windows Firewall?

One of the side-projects I recently was assigned to work on was to switch the Windows Media Connect project from using the home-brewed HTTP server that was originally coded for the product, to using HTTP.SYS, which is included in XP SP2. This was as a Read More...
Posted Monday, July 26, 2004 6:32 PM by LarryOsterman | 22 Comments
 
Page view tracker