Bugtraq mailing list archives
Re: XML in IE 5.0
From: jjohanss () BU EDU (Jesper M. Johansson)
Date: Wed, 19 Jan 2000 18:40:20 -0500
There's yet another solution that might be able to give you the best of both worlds - there is such a thing as a restricted user token under Win2k - you copy your token, strip it of the rights and groups that you want to go away (this is permanent), then create a process using the stripped token. Now you're still running it as you, but you've shed any privileged groups, and shed any rights that you don't want your browser to have.
Does this mean that all processes spawned by the process with the restricted token also have the restricted token? That's the problem with Run As... Processes spawned under a Run As... process often (I haven't been able to figure out when and why) have the token of the process that started the Run As.... To illustrate, User 1 spawns a web browser in the context of User 2 using Run As... The web browser spawns a new process, for example an Active X control. The ActiveX control, under certain circumstances which I don't know what they are, will run in the process of User 1. Also, how do we create this restricted token? Is there an easy command to do that, or can we only do it by digging into the API. Jesper M. Johansson
Current thread:
- Re: XML in IE 5.0 Mike Brown (Jan 13)
- Re: XML in IE 5.0 Mikael Olsson (Jan 13)
- Re: XML in IE 5.0 Mike Brown (Jan 13)
- <Possible follow-ups>
- Re: XML in IE 5.0 Ryan Russell (Jan 14)
- Re: XML in IE 5.0 Brian Behlendorf (Jan 17)
- Re: XML in IE 5.0 David LeBlanc (Jan 18)
- Re: XML in IE 5.0 Jesper M. Johansson (Jan 19)
- Re: XML in IE 5.0 Brian Behlendorf (Jan 17)
- Re: XML in IE 5.0 Darren Reed (Jan 17)
- Re: XML in IE 5.0 Jesper M. Johansson (Jan 19)
- SubSeven 2.1a (trojan) Andrew Griffiths (Jan 19)
- Re: XML in IE 5.0 David LeBlanc (Jan 20)
- Some discussion in http-wg ... FW: webmail vulnerabilities: a new pragma token? Eric D. Williams (Jan 19)
- Re: XML in IE 5.0 Mikael Olsson (Jan 13)
- SyGate 3.11 Port 7323 / Remote Admin hole jalerta () nestworks com (Jan 28)
- [LoWNOISE] Rightfax web client 5.2 ET LoWNOISE (Jan 29)