Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

FW: user logon script context....

from [Murad Talukdar] Network Security [Permanent Link]
Subject: FW: user logon script context....
Date: Fri, 10 Mar 2006 09:33:06 +1000 


I was testing a script file and was not actually expecting it to run in the
way it did. It wrote to the c:\ drive when I fully expected it to write to
the user's profile. This stumped me. So then I started to think maybe I had
learnt it wrong that scripts run as the user OR there are permissions set
that should not have been. Which looks likely on this one machine

Thanks for all the help-especially the pointers to the apps which let me run
scripts as different users/contexts-I can see where it was getting the
ability to write to the c drive when I believed it shouldn't be able to.


Regards
Murad Talukdar

-----Original Message-----
From: Depp, Dennis M. [mailto:deppdm@ornl.gov] 
Sent: Thursday, March 09, 2006 10:12 PM
To: Murad Talukdar; focus-ms@securityfocus.com
Subject: RE: user logon script context....

Murad,

It is not possible to run logon scripts under a different context.  You
might be able to change the context in the script with runas, but this
will require using a password in a script.  

You might want to look at using computer startup scripts.  These will
run in the context of local system; however, you will not be able to
know what user will be on the system.  

Denny


-----Original Message-----
From: Murad Talukdar [mailto:talukdar_m@subway.com] 
Sent: Thursday, March 09, 2006 1:35 AM
To: 'Murad Talukdar'; focus-ms@securityfocus.com
Subject: RE: user logon script context....

Okay a further google showed me the answer--but some clarification would
be
great-can logon scripts be set to run under a chosen context?

Ie, if I don't want it to run under either SYSTEM or localadmin, can
this be
done? (I get the feeling this could be no).

Regards
Murad Talukdar

-----Original Message-----
From: Murad Talukdar [mailto:talukdar_m@subway.com] 
Sent: Thursday, March 09, 2006 4:31 PM
To: 'focus-ms@securityfocus.com'
Subject: user logon script context....

Hi guys,
Can anyone point me to a paper detailing what security context a User
logon
script runs under?

I want to know what kind of permissions a script(well, I understand that
it
doesn't have permissions itself but runs AT a certain level of access)
has
when that user logs one.

For instance, if the user is just a restricted user locally, should I be
able to call a .exe in the script which loads and writes to the c drive?
All
this to be done through a GPO.

Kind Regards
Murad Talukdar


 



------------------------------------------------------------------------
---
------------------------------------------------------------------------
---


---------------------------------------------------------------------------
---------------------------------------------------------------------------





---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: user logon script context...., Steveb
Next by Date:  Automate group membership validation, benoit . fortin
Previous by Thread:  RE: user logon script context...., Steveb
Next by Thread:  Re: FW: user logon script context...., Nicolas RUFF
Indexes:  [Date] [Thread] [Top] [All Lists]