Re: Re:How To Suspend Thread In Kernel?

I know some on the various newsgroups have provided 'help' to some of these
people asking questions about the more undocumented features and
capabilities of Windows. In some cases these answers have been used to
write spyware and viruses. So many don't care, but there are some who just
won't share because it can cause so much damage. Those who want to share
usually want to know the purpose behind the question. In many of those
cases the question is based upon a 'solution' to a 'problem' that is not
real. When the real experts know the problem, another solution that is
supportable and documented is available and easy to implement. The new
developers won't know how the OS is put together and that a solution is
really not all that difficult.

"anton bassov" <xxx@xxxxxxx> wrote in message
news:28324abe9108473b9f2acb9f3a056edd@xxxxxxxxxxxxxx
Hi mate

Judging from what you say, you just had some bad experience with
unsupported
stuff, so that now you avoid everything unsupported like plague.

Now let's look at our situation. The bloke asks how to suspend a thread
from
the kernel mode, which means his program needs this feature. I tell him
what
he can TRY(!!!)to do, and warn him about dangers of doing something like
that to any thread that does not have any user-mode representation. I
don't
guarantee anything, do I - in order to do it, I would have to do a
thorough
testing of this trick with this particular function. The only thing I do
is
giving him a direction, in which he should work and experiment. You tell
him
just to give up straigh away. Which of us is more helpfull???

Concerning company and product, I have to tell you that I don't work for
any
company. I am a consultant who is specialized in "unsupported technology",
so that my clients
ask me to find solutions to the tasks that cannot be solved by the
officially supported means. If you are interested in well-known names, I
can
name CISCO Secure Desktop - I wrote a keylogger detector (which uses quite
a
lot of "unsupported" stuff) for this product

BTW, could you please name the "stupid" thing that you regret doing -
probably, I will be able to show you your mistakes

Regards

Anton Bassov


.

Relevant Pages

  • Re: Privilege-escalation attacks on NT-based Windows are unfixable
    ... so a user can get an Outlook worm or whatever that executes in the ... Windows mainframe my arze. ... they always refer to any bugs as "undocumented features" ... Regards, ...
    (comp.security.misc)
  • Re: Privilege-escalation attacks on NT-based Windows are unfixable
    ... so a user can get an Outlook worm or whatever that executes in the ... Windows mainframe my arze. ... they always refer to any bugs as "undocumented features" ... Regards, ...
    (comp.os.ms-windows.nt.admin.security)
  • Re: OneCare slows system
    ... :) I am talking about marketing step. ... Microsoft *should* make its product to ... run faster, better, etc on windows, because windows was developed by MS. ... | undocumented features that increase their ...
    (microsoft.public.security)