Re: SetUserObjectSecurity gives error ERROR_NOT_ENOUGH_QUOTA
From: Jochen Kalmbach (nospam-Jochen.Kalmbach_at_holzma.de)
Date: 10/23/04
- Next message: Roy Fine: "Re: Reversing Byte Order"
- Previous message: Jan: "WM_COMMAND handler"
- In reply to: user1976: "SetUserObjectSecurity gives error ERROR_NOT_ENOUGH_QUOTA"
- Next in thread: user1976: "Re: SetUserObjectSecurity gives error ERROR_NOT_ENOUGH_QUOTA"
- Reply: user1976: "Re: SetUserObjectSecurity gives error ERROR_NOT_ENOUGH_QUOTA"
- Messages sorted by: [ date ] [ thread ]
Date: Sat, 23 Oct 2004 14:07:46 -0700
Hi user1976,
> If you cannot track when the process dies, there are several
> procedures that you can use to remove any unnecessary ACEs. You can
> enumerate processes, read the Logon Security Identifier (SID) or User
> SID from the process token, and compare one of them to the ACEs stored
> in the DACL for the window station and desktop objects.
I just added to the very good example of Dumpacl at
http://win32.mvps.org/security/dumpacl.html
the ability to dump Winsta-ACLs:
Maybe Felix will update his site to relfect the changes...
In the meanwhile you can download it here:
http://blog.kalmbachnet.de/files/dumpacl.zip
To dump an ACL of an windows-station (winsta0) do the following:
dumpacl WINSTA:winsta0
-- Greetings Jochen My blog about Win32 and .NET http://blog.kalmbachnet.de/
- Next message: Roy Fine: "Re: Reversing Byte Order"
- Previous message: Jan: "WM_COMMAND handler"
- In reply to: user1976: "SetUserObjectSecurity gives error ERROR_NOT_ENOUGH_QUOTA"
- Next in thread: user1976: "Re: SetUserObjectSecurity gives error ERROR_NOT_ENOUGH_QUOTA"
- Reply: user1976: "Re: SetUserObjectSecurity gives error ERROR_NOT_ENOUGH_QUOTA"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
