U


UAC (User Account Control). See User Account Control (UAC)

“UAC-friendly” user data storage, 30

UAP (User Account Protection), 14

UDP packets, Teredo and, 78–80

uiAccess manifest element, 23

UIPI (User Interface Privilege Isolation), 24

Understanding IPv6 (Davies), 78

Unicode, 6

Universal Plug and Play (UPnP), 86

Unix

access control, 160

root account, 99

services, 97

symlink security bugs, 45

“Unknown SID type” bug, Windows Vista, 34

unprivileged users, 14

untrusted data, 181

UPnP (Universal Plug and Play), 86

URIs, 130–131

URL filtering, disabling, 166–167

URLExemptionList, 167

U.S. Government Protection Profile for Single-Level Operating Systems in Environments Requiring Medium Robustness v1.67, 143

User Account Control (UAC), 13–14, 14–15, 40

administrator application runs, requiring, 22–24

administrator elevation, 18

“administrator with approval” mode, 18–20

COM components with COM elevation moniker, starting, 25–26

credentials or consent, application prompt for, 24–25

disabling, advising against, 45

elevated managed code applications, starting, 27

options, checking, 44

process elevation, determining, 20–22

token format, updated, 20

User Interface Privilege Isolation (UIPI), 24

user tokens, 15–17

User Account Protection (UAP), 14

user credentials, prompting for, 24–25, 169–171

user data, safe storage of, 30

user interface considerations, 27–28

User Interface Privilege Isolation (UIPI), 24

user mode, 136

user-name/password security, and Information Cards, 152

user tokens, 15–17

administrator elevation, 18

“administrator with approval mode,” 18–20

assertions and, 156

primary process, assigning, 104

restricted, and access checks, 101

token format, updated, 20

token levels, 21–22

warnings, 43



Writing Secure Code for Windows Vista
Writing Secure Code for Windows Vista (Best Practices (Microsoft))
ISBN: 0735623937
EAN: 2147483647
Year: 2004
Pages: 122

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net