Security Basics mailing list archives
RE: Executing app with admin privileges
From: "Wesley Ward" <wward () truenorthsolutions net>
Date: Fri, 21 Jul 2006 16:43:24 -0400
This is correct, the problem lies with giving the end user the account info to use the run as on the executable. By giving the end user these credentials, you are giving them admin rights to that machine. -----Original Message----- From: David Smith [mailto:nich95ds () gmail com] Sent: Friday, July 21, 2006 3:44 PM To: 'Jeffrey Wei'; security-basics () securityfocus com Subject: RE: Executing app with admin privileges If I understand the Run As feature correctly, it gives a user "full local admin privileges in order for (the app) to run". It does that and only that. If a user needs admin privileges to run the app, right-click the executable, click Run As, and select an Admin or a user with admin privileges. It's not actually giving the user full admin privileges to the machine. It's only to run the app. Can someone correct me if I'm wrong? -----Original Message----- From: Jeffrey Wei [mailto:jeffrey.wei () cubic com] Sent: Friday, July 21, 2006 11:48 AM To: security-basics () securityfocus com Subject: RE: Executing app with admin privileges Our company recently had a need to do what you've described below as one of our in-house developed software absolutely requires full local admin privileges in order for it to run properly and getting the software re-tooled would take too much time and $$... So, to get around that, I've found a free program called MS Toolkit (you should be able to google it) and utilize its configurations to limit access for a specific XP Pro user account that was given full local admin privileges, but locked down using the toolkit. You'll need to manipulate it a little to allow the specific software in question, but it wouldn't be hard at all. Jeffrey Wei -----Original Message----- From: Dummy cerberus [mailto:dummycerberus () gmail com] Sent: Thursday, July 20, 2006 1:56 AM To: security-basics () securityfocus com Subject: Executing app with admin privileges Hello everyone, I have come across with the following problem: I work at the systems department, and we MUST host every stupid application that is developed all over the organisation... most of the times with no common criteria at all, neither with common sense. Now, we have to install a client/server application, and it has been developed in such a way, that the user who executes the client side, has to have "local admin/advanced user" privileges on the desktop where he is executing it... There's no way to modify that application, so I wonder whether or not there is a tool that could allow me to configure the system in such a way that all the users could execute that application, without giving them "local admin/advanced user" privileges for the whole system (only for that stupid application). I wonder if there's a way to acomplish that wether with AD policies or third party tools (better if free ;-) Thanks in advance, and best regards ------------------------------------------------------------------------ --- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ------------------------------------------------------------------------ --- --- [This E-mail scanned for Spam and Viruses by http://www.innovationnetworks.ca] ------------------------------------------------------------------------ --- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ------------------------------------------------------------------------ --- -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.394 / Virus Database: 268.10.3/394 - Release Date: 7/20/2006 -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.394 / Virus Database: 268.10.3/394 - Release Date: 7/20/2006 ------------------------------------------------------------------------ --- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ------------------------------------------------------------------------ --- IMPORTANT: The information contained in this electronic message and/or its attachments is intended only for the use of the individual(s) named above and may contain information that is privileged and/or confidential. If you are not the intended recipient, please notify the sender immediately by reply and immediately delete this message and all its attachments without making any copies or distributions thereof. Any review, use, reproduction, disclosure or dissemination of this message or any attachment by an unintended recipient is strictly prohibited and may violate copyrights and/or other laws. Neither the sender, his or her employer nor any of their respective affiliates makes any warranties as to the completeness or accuracy of any of the information contained herein or that this message or any of its attachments is free of viruses. --------------------------------------------------------------------------- This list is sponsored by: Norwich University EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has designated Norwich University a center of Academic Excellence in Information Security. Our program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Using interactive e-Learning technology, you can earn this esteemed degree, without disrupting your career or home life. http://www.msia.norwich.edu/secfocus ---------------------------------------------------------------------------
Current thread:
- Re: Executing app with admin privileges, (continued)
- Re: Executing app with admin privileges Rob Creely (Jul 24)
- RE: Executing app with admin privileges Roger A. Grimes (Jul 21)
- Re: Executing app with admin privileges List Spam (Jul 21)
- Re: Executing app with admin privileges Kurt Buff (Jul 21)
- RE: Executing app with admin privileges David Smith (Jul 21)
- RE: Executing app with admin privileges Andrew Aris (Jul 24)
- RE: Executing app with admin privileges Nick Duda (Jul 24)
- RE: Executing app with admin privileges Andrew Aris (Jul 24)
- RE: Executing app with admin privileges Jeffrey Wei (Jul 21)
- RE: Executing app with admin privileges David Smith (Jul 21)
- RE: Executing app with admin privileges Gaydosh, Adam (Jul 21)
- RE: Executing app with admin privileges Wesley Ward (Jul 24)
- Re: Executing app with admin privileges Christopher Rector (Jul 24)
- RE : Executing app with admin privileges MARTEAU Jean-Louis (Jul 25)
- Re: Executing app with admin privileges Christopher Rector (Jul 24)
- RE: Executing app with admin privileges Gaydosh, Adam (Jul 24)
- RE: Executing app with admin privileges David Smith (Jul 24)