Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Network Associates VirusScan sdat running as administrator

0 views
Skip to first unread message

John Dempsey

unread,
May 7, 2002, 9:21:20 AM5/7/02
to
Does anyone know how I can install the sdat file for NAI Virus Scan as
administrator. We seem to be having problems with NTFS not having the
right rights to update the file. How can I run the sdatXXX.exe as
administrator?

Many thanks

John D

kurt wismer

unread,
May 8, 2002, 8:22:11 AM5/8/02
to

log into the machine as the administrator... that means you'll need the
admin id and password... perhaps it would be better, though, if you got
the actual administrator to do this...

--
"nothing changes 'cause it's all the same
the world you get's the one you give away
it all just happens again
way down the line"


John Dempsey

unread,
May 9, 2002, 8:53:28 AM5/9/02
to
Sorry Kurt. I meant run it silently as administrator using VBS?

Cheers

John D

kurt wismer <ku...@sympatico.ca> wrote in message news:<3CD91873...@sympatico.ca>...

kurt wismer

unread,
May 9, 2002, 10:04:59 PM5/9/02
to

John Dempsey wrote:
> kurt wismer <ku...@sympatico.ca> wrote in message news:<3CD91873...@sympatico.ca>...
> > John Dempsey wrote:
> > >
> > > Does anyone know how I can install the sdat file for NAI Virus Scan as
> > > administrator. We seem to be having problems with NTFS not having the
> > > right rights to update the file. How can I run the sdatXXX.exe as
> > > administrator?
> >
> > log into the machine as the administrator... that means you'll need the
> > admin id and password... perhaps it would be better, though, if you got
> > the actual administrator to do this...
>

> Sorry Kurt. I meant run it silently as administrator using VBS?

well, i'm not particularly familiar with sdat's so i don't know how to
get them to shut up - but however it's launched, it's still going to
have the security privileges of the user that launched it...

well ok, so technically there is a way to impersonate another user and
thereby spawn processes under the security context of that other user,
but to do it in vbs is not a good idea... you'd be compromising the
security of that account (administrator!) by either revealing the logon
credentials for the account or by providing code that could be modified
to run an arbitrary app and used to gain elevated privileges...

in fact, even your vbs script alone could be used in such an attack by
simply replacing the sdat installer with the aforementioned
elevation-of-privileges app...

i would not suggest enabling impersonation of the administrator
account... bad security mojo... at least as far as this automated way is
concerned... if you are the administrator on the machine in question and
also have a less privileged account which you'd sometimes like to run
administrative processes from, there is an app called CmdAsUsr (or is it
CmdAsUser, i can never remember) from sysinternals.com (i think) that
should allow you to impersonate your administrative account from your
non-administrative account from a command prompt...

AkHibby

unread,
May 10, 2002, 12:24:37 PM5/10/02
to

"kurt wismer" <ku...@sympatico.ca> wrote in message
news:3CDB2ACB...@sympatico.ca...

Or if you're using Win2K you can shift/right click and use RunAs. I think
the silent switch is simply /s from a command line.

Since you only have to run the superdat once per engine, why bother with the
silent switch though? You don't have to be an admin to update the
definitions.

Ian


0 new messages