- Starting a process under a different user without supplying thepassword
- Posted by Saqib Ali on November 28th, 2007
As a I administrator can I launch processes on behalf of other users
without supplying their passwords?
I know psexec can launch processes on behalf of other users, but I
have to supply the user's credentials......
saqib
http://www.quantumcrypto.de/dante/
- Posted by Danny Sanders on November 28th, 2007
I am not aware of a way to do this.
hth
DDS
"Saqib Ali" <docbook.xml@gmail.com> wrote in message
news:cd643424-017b-47d7-9507-2f88dd91932a@d4g2000prg.googlegroups.com...
- Posted by Pegasus \(MVP\) on November 28th, 2007
"Saqib Ali" <docbook.xml@gmail.com> wrote in message
news:cd643424-017b-47d7-9507-2f88dd91932a@d4g2000prg.googlegroups.com...
No, you can't.
- Posted by Anteaus on December 2nd, 2007
You can do this with AutoIt
RunAsSet("username","domain","password")
Run("commandline")
RunAsSet()
http://autoitscript.com
If you compile with encryption, that makes the password reasonably secure.
- Posted by Pegasus \(MVP\) on December 2nd, 2007
"Anteaus" <Anteaus@discussions.microsoft.com> wrote in message
news:303D9302-9115-4C66-85E3-89EABA15522E@microsoft.com...
The OP wanted to do this without supplying the user's credentials.
Your process DOES require these credentials. Furthermore it is
a classical Trojan process: Anyone who gets a copy of your proposed
routine can use (abuse?) it to execute "commandline", regardless of
what hides behind this "commandline".
- Posted by Anteaus on December 2nd, 2007
"Pegasus (MVP)" wrote:
I would take it he means "Not supply them manually, ad nauseam." - That is
the sensible interpretation.
So you reckon the OP is a malware author?
- Posted by Pegasus \(MVP\) on December 2nd, 2007
"Anteaus" <Anteaus@discussions.microsoft.com> wrote in message
news
1917065-2223-4079-A7DF-0FBB91835645@microsoft.com...
No, not at all. I'm saying that in using your tool, the OP
gives his users a tool that can easily be used for unauthorised
access.
