Don t Open Objects for FULL_CONTROL or ALL_ACCESS

Previous page
Table of content
Next page

Don t Open Objects for FULL_CONTROL or ALL_ACCESS

This advice has been around since the early days of Windows NT 3.1 in 1993: if you want to open an object, such as a file or a registry key for read access, open the object for read-only access don t request all access. Requiring this means the ACL on the objects in question must be very insecure indeed for the operation to succeed.


Previous page
Table of content
Next page
Writing Secure Code
Writing Secure Code, Second Edition
ISBN: 0735617228
EAN: 2147483647
Year: 2005
Pages: 153
Authors: Michael Howard, David LeBlanc
BUY ON AMAZON
High-Speed Signal Propagation[c] Advanced Black Magic
Cisco IP Communications Express: CallManager Express with Cisco Unity Express
A Practitioners Guide to Software Test Design
Lotus Notes Developers Toolbox: Tips for Rapid and Successful Deployment
Practical Intrusion Analysis: Prevention and Detection for the Twenty-First Century: Prevention and Detection for the Twenty-First Century
The Oracle Hackers Handbook: Hacking and Defending Oracle
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy