Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Interactive Logon


  • Please log in to reply
1 reply to this topic

#1 BMXRcr

BMXRcr

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:04:32 AM

Posted 29 January 2011 - 03:29 PM

I've recently been told that a large amount of rootkit privilige escalation succeeds in attaining Admin or System level privileges through the use of Interactive Logon. Is there any way to get around this (not quite sure what it involves)? Disabling it or using another type of login? If so, how do you do this in Win 7 64x home premium? I think there's a way in the Pro version through Local Security Policy but don't think this is available in Win 7 Home Premium (maybe a reg key)? Any ideas? Thanks.

BC AdBot (Login to Remove)

 


#2 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:32 AM

Posted 29 January 2011 - 04:29 PM

An interactive logon is when you physically sit at your machine, and have the logon screen were you enter your credentials (username/password). I'm excluding terminal services.

Simply put, if you disable this, you won't be able to logon to your machine anymore.

Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Senior Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2019
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users