Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • World
  • Users
  • Groups
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse
Code Project
  1. Home
  2. Database & SysAdmin
  3. System Admin
  4. Windows Services Security

Windows Services Security

Scheduled Pinned Locked Moved System Admin
questionwindows-adminsecuritytutoriallearning
2 Posts 2 Posters 0 Views 1 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • T Offline
    T Offline
    TalkingBabb0t
    wrote on last edited by
    #1

    I have zonealarm installed and of course everyone knows, the vsmon services is basically the brains behind the outfit...anyways when I look at the services applet and go to options on vsmon almost everything is grayed out...so I went into the registry at hkey_local_machine\system\currentcontrolset\services\vsmon\security And in there, is a key called Security...It is a binary key and has a whole bunch of hex written in it. I imagine this is what is causing the services applet in XP to gray out all the configuration for it. Is there a way I can find out how to write my own Security reg keys like this for other services to keep people from tampering, etc? P.S. I've already "googled" the matter lol but maybe someone knows the answer elsewhere. Thanks in advance.

    M 1 Reply Last reply
    0
    • T TalkingBabb0t

      I have zonealarm installed and of course everyone knows, the vsmon services is basically the brains behind the outfit...anyways when I look at the services applet and go to options on vsmon almost everything is grayed out...so I went into the registry at hkey_local_machine\system\currentcontrolset\services\vsmon\security And in there, is a key called Security...It is a binary key and has a whole bunch of hex written in it. I imagine this is what is causing the services applet in XP to gray out all the configuration for it. Is there a way I can find out how to write my own Security reg keys like this for other services to keep people from tampering, etc? P.S. I've already "googled" the matter lol but maybe someone knows the answer elsewhere. Thanks in advance.

      M Offline
      M Offline
      Mike Dimmick
      wrote on last edited by
      #2

      It's the Access Control List for the service object. You can view the ACL for a service using the sc tool:

      C:\>sc sdshow w3svc

      D:(A;;CCLCSWRPWPDTLOCRRC;;;SY)
      (A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)
      (A;;CCLCSWLOCRRC;;;AU)
      (A;;CCLCSWRPWPDTLOCRRC;;;PU)

      This output is in Security Descriptor Definition Language [SDDL] format. To set the ACL on a service from code, use SetServiceObjectSecurity. From the command line, you can use sc sdset. Stability. What an interesting concept. -- Chris Maunder

      1 Reply Last reply
      0
      Reply
      • Reply as topic
      Log in to reply
      • Oldest to Newest
      • Newest to Oldest
      • Most Votes

      • Login
      • Don't have an account? Register
      • Login or register to search.
      • First post
        Last post
      0
      • Categories
      • Recent
      • Tags
      • Popular
      • World
      • Users
      • Groups