Dailydave mailing list archives
Re: Windows Access Control Demystified
From: "Bruce Ediger" <eballen1 () qwest net>
Date: Sat, 4 Feb 2006 10:24:40 -0700 (MST)
On Thu, 2 Feb 2006, Steven M. Christey wrote:
to find complex privileges/ACL problems in Windows. I've always suspected that the fine-grained nature of Windows' security mechanisms would result in difficult-to-find, easy-to-make vulnerabilities, and
What tickled you to suspect this? Was this an intuition born of experience with other operating systems fine-grained security mechanism or do you have some general principle that covers this? How does Windows' security mechanisms compare with DEC's VMS' security mechanisms? Didn't VMS have some set of ACLs and privileges that would allow transitive gathering of privileges from some nominally harmless privilege?
Current thread:
- Windows Access Control Demystified Steven M. Christey (Feb 02)
- Re: Windows Access Control Demystified Cesar (Feb 02)
- Re: Windows Access Control Demystified Bruce Ediger (Feb 04)
- <Possible follow-ups>
- RE: Windows Access Control Demystified surreal (Feb 02)
- Re[2]: Windows Access Control Demystified Thierry Zoller (Feb 02)
- RE: Windows Access Control Demystified Taylor, Gord (Feb 02)
- RE: Windows Access Control Demystified Cesar (Feb 02)
- Re: Windows Access Control Demystified ol (Feb 02)
- RE: Windows Access Control Demystified Cesar (Feb 02)
- Re: Windows Access Control Demystified Steven M. Christey (Feb 05)