From: "Ivan Brugiolo [MSFT]" <ivanb...@online.microsoft.com>
Date: Thu, 12 Dec 2002 15:26:49 -0800
Local: Thurs, Dec 12 2002 6:26 pm
Subject: Re: How to impersonate without password
You can write RSH if you have a "daemon" process with the
but the created token would belong to the system logon session, and the
token would have
no chance to do much apart from the local machine.
The phylosophically correct approach would be to use SSPI
"Garfield Lewis" <gale...@ca.ibm.com> wrote in messagenews:e3M0u8hoCHA.2328@TK2MSFTNGP11...
> This is an interesting answer, how would one then write a compliant RSH
> daemon on Windows without first knowing the password of every possible
> who could run a rsh command against it? Remember that rsh its requests in
> specific format and a password is not part of this data stream.
> Just a thought...
> "Egbert Nierop (MVP for IIS)" <egbert_nie...@nospam.com> wrote in message
> > > Does anybody know a way to impresonate a process which is running
> > This is *not* possible, if it were, windows-hell broke... the idea of
> > > (Sorry if it's not the right place to ask my question. If not, please
> > > Thanks a lot !
> > > Antoine.
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.