Security Basics mailing list archives

RE: Executing app with admin privileges

From: "Andrew Aris" <andrew () dev bigfishinternet co uk>
Date: Mon, 24 Jul 2006 13:38:05 +0100

That would certainly work but in the process it opens up a wide range of
security isses - the elevated privilages are available from throughout the
app which means that a file dialog could be used to launch other apps with
those privilages, access restricted files etc.

It's the easy way round it but not really the best.

Regards,

Andrew

-----Original Message-----
From: David Smith [mailto:nich95ds () gmail com] 
Sent: 21 July 2006 19:47
To: 'Dummy cerberus'; security-basics () securityfocus com
Subject: RE: Executing app with admin privileges

Could the users use the Run As command and run the app as an administrator?
(Right-click the executable and click Run As.)

-----Original Message-----
From: Dummy cerberus [mailto:dummycerberus () gmail com]
Sent: Thursday, July 20, 2006 3:56 AM
To: security-basics () securityfocus com
Subject: Executing app with admin privileges

Hello everyone,

I have come across with the following problem:

I work at the systems department, and we MUST host every stupid application
that is developed all over the organisation... most of the times with no
common criteria at all, neither with common sense.

Now, we have to install a client/server application, and it has been
developed in such a way, that the user who executes the client side, has to
have "local admin/advanced user" privileges on the desktop where he is
executing it...

There's no way to modify that application, so I wonder whether or not there
is a tool that could allow me to configure the system in such a way that all
the users could execute that application, without giving them "local
admin/advanced user" privileges for the whole system (only for that stupid
application).

I wonder if there's a way to acomplish that wether with AD policies or third
party tools (better if free ;-)

Thanks in advance, and best regards

---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The NSA has
designated Norwich University a center of Academic Excellence in Information
Security. Our program offers unparalleled Infosec management education and
the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree,
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

--
No virus found in this incoming message.
Checked by AVG Free Edition.
Version: 7.1.394 / Virus Database: 268.10.3/394 - Release Date: 7/20/2006
 

-- 
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.394 / Virus Database: 268.10.3/394 - Release Date: 7/20/2006
 


---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------




---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Current thread:

Re: Executing app with admin privileges, (continued)
- Re: Executing app with admin privileges Mario Platt (Jul 21)
  - RE: Executing app with admin privileges David Smith (Jul 21)
    - RE: Executing app with admin privileges Dixon, Wayne (Jul 24)
    - Re: Executing app with admin privileges Hylton Conacher(ZR1HPC) (Jul 28)
  - Re: Executing app with admin privileges Raoul Armfield (Jul 21)
    - Re: Executing app with admin privileges Rob Creely (Jul 24)
- RE: Executing app with admin privileges Roger A. Grimes (Jul 21)
- Re: Executing app with admin privileges List Spam (Jul 21)
- Re: Executing app with admin privileges Kurt Buff (Jul 21)
- RE: Executing app with admin privileges David Smith (Jul 21)
  - RE: Executing app with admin privileges Andrew Aris (Jul 24)
    - RE: Executing app with admin privileges Nick Duda (Jul 24)
- RE: Executing app with admin privileges Jeffrey Wei (Jul 21)
  - RE: Executing app with admin privileges David Smith (Jul 21)
- RE: Executing app with admin privileges Gaydosh, Adam (Jul 21)
- RE: Executing app with admin privileges Wesley Ward (Jul 24)
  - Re: Executing app with admin privileges Christopher Rector (Jul 24)
    - RE : Executing app with admin privileges MARTEAU Jean-Louis (Jul 25)
- RE: Executing app with admin privileges Gaydosh, Adam (Jul 24)
  - RE: Executing app with admin privileges David Smith (Jul 24)