Request for help debugging screen problem

Corinna Vinschen corinna-cygwin@cygwin.com
Sat Feb 6 13:14:00 GMT 2010


On Feb  5 17:31, Corinna Vinschen wrote:
> On Feb  5 15:58, Shaddy Baddah wrote:
> > I thought it was common knowledge that logging in to an
> > Administrtors grouped user in Vista or Windows 7 is not enough to
> > defeat the (default) UAC, and you remain unelevated from a privilege
> > standpoint. That is why I have no choice but to unlock the genuine
> > Administrator (and rename it just in case).
> 
> No, that's not quite correct.  If you call LogonUser (or the cyglsa sort
> of password-less authentication) successfully, the system returns the
> non-elevated token as well as the elevated token as a so-called linked
> token.  In case of pubkey authentication, Cygwin refers to the elevated
> token and uses that to switch the user context.  In case of password
> authentication it does not do that so far.

In CVS it does now.


Corinna

-- 
Corinna Vinschen                  Please, send mails regarding Cygwin to
Cygwin Project Co-Leader          cygwin AT cygwin DOT com
Red Hat



More information about the Cygwin-developers mailing list