security - Is an LSA MSV1_0 subauthentication package needed for some impersonation use cases? -

-

Greetings,

I am working with a seller who has applied some code that Windows LSA uses MSV1_0 subtitling package (MSDN information if you are interested): And I want to know if this is necessary.

As far as I can tell, the subtitling routine and filtering allows hooking or customizing standard LSA MSV1_0 logon event processing issue is that I do not understand that the seller's product Why these capabilities are needed.

I have asked them and they said that they use it to impersonate. This product definitely needs to be cloned, but based on my limited Win32 knowledge, they can get the functionality required to use the normal ATH API (LSAAlogon User, Impressus Logged Onuser, etc.) without the submatication package. Apart from this, I have worked with many types of products that do all the cloning, and only one subtitling package has been used.

If you are wondering why I care about, then the previous version product was a bug in subtacticization package DLL, which had lockup or blue screen. This makes me frightened and asks me questions on the use of such low-level, kernel sensitive interfaces. I would like to go back to the seller and say "no LSA subahath package for impersonation << em> << em> can not do this", but I'm not sure I understand usage cases And the potential limitations of the standard Win32 authentication / Impersonation API, which are definitely sufficient to make that claim substantially enough.

So, for the 32 security guards who win there, you need the need LSA MSV1_0 subtitling package if you are doing all this, what is the impersonation?

Thanks in advance for any idea!

I believe the package is for cloning only in your given link, 'Impersonation There is nothing related to '.

I think that you can have a sub-authentication package to verify the user at the extended level, such as fingerprint checking or user information such as DOB, security question etc.

Package, I believe there is no kernel mode service, so there is no question of BSOD.


Comments

Post a Comment

Popular posts from this blog

c++ - Linux and clipboard -

-
After selecting the copies of the buffer in Linux, after the text, we can click and paste the button between the mouse. I think there is a special buffer for this, I want to use it. Programming Language: C ++ Your Library: Qt Thanks. There is just one more correct answer than Paul Dixon, which answers your needs: / P > QClipboard * clipboard = QApplication :: clipboard (); CastString Selected Text = Clipboard-> Text (QClipboard :: Selection);
Read more

What is expire header and how to achive them in ASP.NET and PHP? -

-
I have examined the performance statistics of my website today. I have received a warning (or error may occur) that is given below Add Terminal Headers Here are 15 static components without a 15-futures end date * (no end) Http://www.example.com/video/css/global.css * (no time limit) http://www.example.com/video/js/global.js * (no expiration ) Http: //www.example.com/video/images/main-bg.png what it means and how to achieve it both in PHP and ASP.Net. I am on a shared hosting server, so please tell me some ways to use the code, because I can not make any modifications at the end of the server. If I expire the header, then there is no chance that if I make changes to the CSS, then the user will not be able to remove them immediately because CSS and other files have a fixed time limit (1 month, week ) Are cached for. Is Is there any harm to using PHP? $ time = time () + 3 * 24 * 60 * 60; // 3 day headings ('End:'. GMDAT ('D, D MYH: i: s \ g \ m \ t',
Read more

sql server - How can I determine which of my SQL 2005 statistics are unused? -

-
After a few years, one of my biggest databases has deposited 73 figures out of its largest tables. With Indexes, I can run many types of reports and queries, how often / heavily specific indexes are used. What is an equivalent for data? We are running SQL 2005. To make statistics automatically managed and honest, I would like to "update statistics", "create statistics" and There is no information about any management except "drop statistics" orders. In theory, UPDATE should handle the addition and removal of statistical data. In addition, I've never heard about the amount of storage or storage taking in large amounts, so I'm not sure whether there is any reason for the alarm or not. If you are seeing a potential problem, then I would suggest running an update before, if it does not clean it, it is leaving and then it appears to be safe operation (because it is the only query optimizer Is for). I will not leave "left" in the
Read more