Re: Interactive Service Related to Logon
From: Maxim S. Shatskih (maxim_at_storagecraft.com)
Date: 11/03/04
- Next message: manu: "Re: event vs volatile bool"
- Previous message: Arkady Frenkel: "Re: GetThreadTimes..."
- In reply to: Samuel Lee: "Interactive Service Related to Logon"
- Next in thread: JJ: "Re: Interactive Service Related to Logon"
- Reply: JJ: "Re: Interactive Service Related to Logon"
- Reply: Samuel Lee: "Re: Interactive Service Related to Logon"
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 3 Nov 2004 16:43:15 +0300
> I am writing a Service that will authenticate the users during the
> Login.
> The way I implement this scheme is that I start separate thread that
> draws dialog whenever the service get Event Notification (Lock,
> Logoff, Startup) from winlogon.
Showing any UI from the service is a security issue (due to window manager
being unprotected and security-unaware at all), and, according to David
LeBlanc, the next Windows versions are likely to disable all ways of doing
this.
Write a helper app which will show the UI which will communicate to the service
via RPC or COM.
If the purpose of your service is to authenticate the user - then write a
subauth package, Platform SDK has everything needed for it.
> It said that displaying a GUI from a service, especially on a
> Multi-user system is not recommended.
It will be probably disabled in the future to avoid opening a security hole.
There will be no more interactive services.
-- Maxim Shatskih, Windows DDK MVP StorageCraft Corporation maxim@storagecraft.com http://www.storagecraft.com
- Next message: manu: "Re: event vs volatile bool"
- Previous message: Arkady Frenkel: "Re: GetThreadTimes..."
- In reply to: Samuel Lee: "Interactive Service Related to Logon"
- Next in thread: JJ: "Re: Interactive Service Related to Logon"
- Reply: JJ: "Re: Interactive Service Related to Logon"
- Reply: Samuel Lee: "Re: Interactive Service Related to Logon"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
