reactos/dll/win32/lsasrv
George Bișoc bee9b2fcc6
[LSASRV] Set up a security descriptor for the token object
LSASS implements a default ACL inside the token structure field but it doesn't actually set a protective security descriptor for the token object itself. This happens so that the kernel gets whatever default ACLs it finds for the object which is incorrect.

SYSTEM has full and supreme control over tokens, administrators can only read the token as such. The logged in user of their own token has full access. Credits and courtesy goes to Thomas Faber for the patch.
2022-05-06 10:09:36 +02:00
..
lang [TRANSLATION] Review & update Simplified Chinese (zh-CN) translation (#3933) 2022-03-31 20:30:52 +03:00
authpackage.c [LSASRV] Set up a security descriptor for the token object 2022-05-06 10:09:36 +02:00
authport.c
CMakeLists.txt
database.c
dssetup.c
lookup.c
lsarpc.c
lsasrv.c
lsasrv.h [LSASRV] Set up a security descriptor for the token object 2022-05-06 10:09:36 +02:00
lsasrv.rc
lsasrv.spec
notify.c
policy.c
privileges.c [REACTOS] Add '\n' to debug logs 2022-05-04 03:28:38 +03:00
registry.c
resources.h
security.c [LSASRV] Set up a security descriptor for the token object 2022-05-06 10:09:36 +02:00
service.c
session.c
srm.c [REACTOS] Add '\n' to debug logs 2022-05-04 03:28:38 +03:00
utils.c