tags:

views:

62

answers:

4
+1  Q: 

Create a process with ordinary rights from an administrator process

There is any way to run another process with ordinary rights from a process running as administrator? From a process with elevated rights I want to start a process with ordinary rights like it were started from explorer. I tried impersonation but I didn't work.

A: 

on linux you can use setuid to change the program user id

for windows you can look at his: http://serverfault.com/questions/16886/is-there-an-equivalent-of-su-for-windows

jojo  2010-02-05 11:22:55
+2  A: 

Use CreateProcessAsUser(). Details are in the linked SDK docs.

Hans Passant  2010-02-05 12:11:25
And where would you get the token from?
Anders  2010-02-14 21:57:20
@Anders - LogonUser() returns that token.
Hans Passant  2010-02-14 22:25:02
@nobugz - And where do you get the username and password for LogonUser?
Anders  2010-02-14 23:14:34
@Anders - ask the user. That had a dangerously high doh! level.
Hans Passant  2010-02-14 23:29:15
+1  A: 

No this is not possible (There are several hacky ways to do this (Inject into explorer, task scheduler, SaferAPI+MediumIL etc) but none of them work in all scenarios)

Anders  2010-02-06 12:54:46
The problem is that it's REALLY hard to split your token back the way it was when winlogon created it. Your best bet is to have a medium IL application that launches your application elevated. When you want to execute code as the standard user, just IPC the request to the medium IL launching application.
Larry Osterman  2010-02-07 20:33:46
A: 

This seems like a nice way to do it, provided you don't care about situations where the Shell is not running (e.g. possibly some Terminal Services application-only setups, perhaps, though I'm not sure):

http://brandonlive.com/2008/04/27/getting-the-shell-to-run-an-application-for-you-part-2-how/

It gets an interface to Explorer.exe, which should be running in the user's normal context, and asks Explorer to execute a command in its behalf. This is done just using simple, documented COM interfaces and without having to mess around with process tokens or code/DLL injection.

Leo Davidson  2010-02-24 12:03:39

related questions

How to read a value from the Windows registry
CreateProcessAsUser vs ShellExecute
How do you configure an OpenFileDIalog to select folders?
Is there anything similar to the OS X InputManager on Windows?
So what am I missing with this here WPF?
How to convert std::string to LPCWSTR in C++ (Unicode)
Notification of drop in drag-drop in Windows
Find out which process has an exclusive lock on a USB device handle
What's an alternative to GWL_USERDATA for storing an object pointer?
FlashWindowEx FLASHW_STOP still keeps taskbar colored
Getting UI text from external app in C#
Sending a mouse click to a button in the taskbar using C#
Suitable alternative to CryptEncrypt
Is FindFirstChangeNotification the best API to use for file system change notification on windows?
What is the easiest way to parse an INI File in C++?
_wfopen equivalent under Mac OS X
Validating a Win32 Window Handle
Get list of domains on the network
Does it still make sense to learn low level WinAPI programming?
How do you create your own moniker (URL Protocol) on Windows systems?
Where is a good place to start programming GUIs for windows?
Bringing Window to the Front in C# using Win32 API
How can you tell when a user last pressed a key (or moved the mouse)?
Can a windows dll retrieve its own filename?
Wiggling the mouse using C#