This is the mail archive of the cygwin-developers mailing list for the Cygwin project.

Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: Request for help debugging screen problem

On Feb  5 17:31, Corinna Vinschen wrote:
> On Feb  5 15:58, Shaddy Baddah wrote:
> > I thought it was common knowledge that logging in to an
> > Administrtors grouped user in Vista or Windows 7 is not enough to
> > defeat the (default) UAC, and you remain unelevated from a privilege
> > standpoint. That is why I have no choice but to unlock the genuine
> > Administrator (and rename it just in case).
> 
> No, that's not quite correct.  If you call LogonUser (or the cyglsa sort
> of password-less authentication) successfully, the system returns the
> non-elevated token as well as the elevated token as a so-called linked
> token.  In case of pubkey authentication, Cygwin refers to the elevated
> token and uses that to switch the user context.  In case of password
> authentication it does not do that so far.

In CVS it does now.


Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Project Co-Leader          cygwin AT cygwin DOT com
Red Hat
Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]