Virusburst

pcbutts1 · 01-04-2007, 10:36 PM

Well we just started or Vista tests so far for the setup we found while
running the setup installer the "Run the program now" or "View the readme
file" etc... check boxes may be convenient for users, they present a
security problem on Vista. Any processes Setup spawns will inherit the same
privileges as Setup -- usually full administrative privileges. We will
either eliminate the [Run] entries, or add OnlyBelowVersion: 0,6 parameters
to prevent them from being displayed on Vista. During setup we can modify
permissions parameters for setting permissions on directories, files, and
registry keys respectively.

There is a program called SetACL. SetACL is a set of routines for managing
Windows permissions (ACLs) from the command line, from scripts and from
programs. These routines can be used from various container or interface
programs. Currently there exist a command line version to be used in batch
files or scripts and an ActiveX control which can be used from any
COM-enabled language (VB, WSH scripts, ...). SetACL works on all Windows NT
based operating systems from Windows 2000 onwards. The newer, the better. It
is open source.

--

Newsgroup Trolls. Read about mine here http://www.pcbutts1.com/downloads
The list grows. Leythos the stalker http://www.leythosthestalker.com, David
H. Lipman, Max M Wachtell III aka What's in a Name?, Fitz,
Rhonda Lea Kirk, Meat Plow, F Kwatu F, George Orwell

"Nick Skrepetos" <nskrepetos@yahoo.com> wrote in message
news:1167962986.217566.298840@11g2000cwr.googlegro ups.com...
>
> pcbutts1 wrote:
>> Before those files are added to Spyerase they are checked and confirmed
>> not
>> to be system files on 4 different systems Win2000, XP, server, both
>> laptops
>> and desktops. We are now running tests with Vista. There have been zero
>> reports from anyone so far but we do keep backups just in case. We even
>> fix
>> the damage caused by the real thief's roguefix file.
>>
>> --
>>
>
> Out of curiosity, on Vista how are you getting around the security
> restrictions imposed by Vista when trying to delete files out of
> certain folders? And the fact that certain folders and registry keys
> are virtualized? Do you require your batch file to be run with
> administrator privs? What if they have UAC on?
>
> Nick Skrepetos
> SUPERAntiSpyware.com
> http://www.superantispyware.com
>

Thread: Virusburst

Thread Tools

Display

Threaded View

Re: Virusburst

Thread Information

Users Browsing this Thread

Posting Permissions