Windows 8, Console API, and Restricted Tokens

I discovered some undesirable behaviour with LUA tokens and the console API. On Windows 8, executing a command with sudont causes an error and the application refuses to start.

Continue reading »

sudont

I'm writing a sandbox application for a larger Windows project, and I needed the ability to drop admin privileges for certain operations. I thought about going the other way and elevating only when needed, but there are problems with that approach.

Continue reading »

Remotely Set a User's Desktop Wallpaper

I recently discussed, with a coworker, the feasibility of changing a logged on user's desktop wallpaper remotely. It was an interesting problem with quite a number of challenges. The Win32 security model is very complex and I had to jump through a lot of hoops for what I thought would be a fairly simple task. Overall it was a very enlightening experience but I did learn a new appreciation for seteuid(0).

Continue reading »

DoD Common Access Card on Linux

There are times when I need to use my Common Access Card at home. Being a Linux user, I figured this would be challenging to configure. It took a few hours of trying different packages and directions, but I finally have it working. Considering the process isn't entirely straightforward, I thought it'd be good to document the steps here.

Continue reading »

Block Windows Shut Down

It's hard to describe just how much I HATE rebooting my computer. If I have to use a Windows computer for any extended period of time, then I always change update policies to disallow automatic reboots. In fact, I usually click the irritating "Remind me in ten minutes" button every ten minutes for three weeks before I finally allow Windows to restart (or until I stop the Automatic Updates service).

Continue reading »