Hi,
There’s probably an easy answer, but I searched the NTDEV archives and only
found this regarding calling CreateFile to open a device for IOCTLs from a
system that is running in the context of a non-administrative user account:
Deviceobjects on NT4.0 are created with Read/Write permission. That created
a big security hole as malicious user can directly access the device. On
Win2k, deviceobjects are just given Read permission. I think this is
preventing non-admin users from accessing the device. Check out
http://www.sysinternals.com/devsec.htm for more information.
So, now I’m running into this problem, I can’t seem to find the solution to
it. There’s a link above that is no longer valid. A quick pointer to how
to solve this issue is appreciated.
Paul
Paul Benware
Director of Client Development
KoolSpan Inc.
11134 Stephalee Lane
North Bethesda, MD 20852
TELE: 1-301-468-9434
DIRECT: 1-301-560-4531
FAX: 1-301-576-6341
CELL: 1-585-739-0441