Vulnerability Development mailing list archives

Re: Why MS namedpipe work this way

From: 3APA3A <3APA3A () SECURITY NNOV RU>
Date: Tue, 11 Dec 2001 09:51:08 +0300

Hello Minchu,


--Monday, December 10, 2001, 2:56:05 PM, you wrote to vuln-dev () securityfocus com:




MM> Would it be better to have this function 
MM> ImpersonateNamedPipeClient() work only in case 
MM> when namedpipe server have higher privilidge than 
MM> client.

Under  *nix  there  is  superuser  with  uid 0 and ordinary users. Under
Windows  there is no things like that. There is a set of permissions and
group  memberships  each user can be given. It's impossible to compare 2
abstract users who has "higher" privileges.



-- 
~/ZARAZA
Машина оказалась способной к единственному действию,
а именно умножению 2x2, да и то при этом ошибаясь. (Лем)

Current thread:

Why MS namedpipe work this way Minchu Mo (Dec 10)
- Re: Why MS namedpipe work this way Robert Freeman (Dec 10)
- Re: Why MS namedpipe work this way 3APA3A (Dec 11)
  - Re: Why MS namedpipe work this way Ryan Permeh (Dec 11)