Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Does your re-starter program which listens on the named event have any sig checking or similar?

First thing I thought when reading it was Hmmm ability to run something as another user.



There's no point in checking it. If another user is running an executable that you have full control over, then you can make him run anything you want anyways.


But its not control over the binary executable file, its the control over the event?

Or am I really missing something here, and you set up the object with the security token used on the binary file?

My question (sorry if it's super dumb and I'm missing something) is what permissions are needed to communicate via the event?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: