site Search:


Home Reviews Tools Forums FAQs Find Service ISP News Maps About  
 
    All Forums Hot Topics Gallery






how-to block ads

  
Forums >

Broadband Tech > Security > Security > AVG updates grant full control to Everyone, changes owner?

Search Topic:
 Share Topic
Posting?
Post a:
Post a:
Links: ·Hijack This logs? ·Panda Free Tools ·Vundo Removal
AuthorAll Replies

psloss
Premium
join:2002-02-24
Alpharetta, GA
1 edit

reply to asdfghjklzx5

Re: AVG updates grant full control to Everyone, changes owner?

I'm five hours behind you (well, on this...it's probably worse in other areas). Just looking at the "live" and autostart "stuff," the startup scanner (aswboot.exe) and the screensaver jumped out as having the Everyone/Full Control ACE.

Have to go back and check AVG, but the DACLs that Avast is setting are weird -- the Everyone/Full Control ACE is flagged as inherited from the parent object (the containing directory), but it's not immediately obvious where it's inherited from. In the screenshot, you can see where the other ACEs are inherited from, but not the one that came from Avast (it says "Parent Object", which I infer to mean that even the OS is confused).

This sure gives you the warm fuzzies, doesn't it?

Philip Sloss
--
Feedback? e-mail: stuff@lupwa.org

to forum · permalink · 2006-03-05 07:59:24 ·


asdfghjklzx5
Premium
join:2004-05-03
kudos:1

said by psloss:

In the screenshot, you can see where the other ACEs are inherited from, but not the one that came from Avast (it says "Parent Object", which I infer to mean that even the OS is confused).
Actually, this happens when file permission are set using the command-line cacls.exe utility. I use cacls.exe at work to set custom perms for legacy programs, and this weird "bogus inheritance flag" happens every time I use it. I just passed it off as a strange bug, and though nothing more of it, as it didn't hinder the effectiveness of cacls.exe.
--
Have problems running your Windows box as a limited user?
Try this...»home.toadlife.net/winsudo
to forum · permalink · 2006-03-06 00:58:33 ·

psloss
Premium
join:2002-02-24
Alpharetta, GA

said by asdfghjklzx5:

Actually, this happens when file permission are set using the command-line cacls.exe utility. I use cacls.exe at work to set custom perms for legacy programs, and this weird "bogus inheritance flag" happens every time I use it. I just passed it off as a strange bug, and though nothing more of it, as it didn't hinder the effectiveness of cacls.exe.
Wasn't aware of that with CACLS, thanks for pointing that out. It certainly doesn't change the effectiveness of the ACE to have an inherited flag from nowhere. I didn't see anywhere in CACLS to reset inheritance -- are you aware of how to do that with the utility?

Thanks,

Philip Sloss
--
Feedback? e-mail: stuff@lupwa.org
to forum · permalink · 2006-03-06 07:34:41 ·


asdfghjklzx5
Premium
join:2004-05-03
kudos:1

said by psloss:

It certainly doesn't change the effectiveness of the ACE to have an inherited flag from nowhere. I didn't see anywhere in CACLS to reset inheritance -- are you aware of how to do that with the utility?

Thanks,

Philip Sloss
No. AFAIK, calcs.exe can't reset inheritance. There are some other annoyances with cacls.exe. Microsoft really didn't do a very good job with it.
--
Have problems running your Windows box as a limited user?
Try this...»home.toadlife.net/winsudo
to forum · permalink · 2006-03-06 19:44:55 ·
Forums > Broadband Tech > Security > Security

Sunday, 27-May 18:48:28 Terms of Use & Privacy | feedback | contact | Hosting by nac.net - DSL,Hosting & Co-lo
over 12.5 years online © 1999-2012 dslreports.com.
Most commented news this week
Hot Topics