Dailydave mailing list archives
Windows Access Control Demystified
From: "Steven M. Christey" <coley () mitre org>
Date: Thu, 2 Feb 2006 01:44:36 -0500 (EST)
Not sure if anyone's really looked at this yet, but the "Windows Access Control Demystified" paper talks about a tool that was created to find complex privileges/ACL problems in Windows. I've always suspected that the fine-grained nature of Windows' security mechanisms would result in difficult-to-find, easy-to-make vulnerabilities, and this paper helps to demonstrate the concept. http://www.cs.princeton.edu/~sudhakar/papers/winval.pdf What do others think? - Steve
Current thread:
- Windows Access Control Demystified Steven M. Christey (Feb 02)
- Re: Windows Access Control Demystified Cesar (Feb 02)
- Re: Windows Access Control Demystified Bruce Ediger (Feb 04)
- <Possible follow-ups>
- RE: Windows Access Control Demystified surreal (Feb 02)
- Re[2]: Windows Access Control Demystified Thierry Zoller (Feb 02)
- RE: Windows Access Control Demystified Taylor, Gord (Feb 02)
- RE: Windows Access Control Demystified Cesar (Feb 02)
- Re: Windows Access Control Demystified ol (Feb 02)
- RE: Windows Access Control Demystified Cesar (Feb 02)
- Re: Windows Access Control Demystified Steven M. Christey (Feb 05)