Hi folks!
It?s my first thread here.
I would like to know from you best ways to protect the Windows registry.
I got a key that must be protected from edition and I would to know the best way to do it.
Someone can share some experience with me ?
Thanks
Not nessecarily a file system issue. I would simply use Windows security to
protect it. Bottom line, is anything more complex can still be broken by an
admistrator account.
–
Don Burn (MVP, Windows DKD)
Windows Filesystem and Driver Consulting
Website: http://www.windrvr.com
Blog: http://msmvps.com/blogs/WinDrvr
wrote in message news:xxxxx@ntfsd…
Hi folks!
It´s my first thread here.
I would like to know from you best ways to protect the Windows registry.
I got a key that must be protected from edition and I would to know the best
way to do it.
Someone can share some experience with me ?
Thanks
Information from ESET NOD32 Antivirus, version of virus signature
database 4285 (20090728)
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
Information from ESET NOD32 Antivirus, version of virus signature database 4285 (20090728)
The message was checked by ESET NOD32 Antivirus.
http://www.eset.com
Don Burn wrote:
Not nessecarily a file system issue. I would simply use Windows security to
protect it. Bottom line, is anything more complex can still be broken by an
admistrator account.
Short of what Don said about an Admin account, you can protect the
registry quite nicely through a registry filter. For Vista and above
check out the CM filtering mechanism. For pre-Vista you can use the same
technique but you need to get into the call chain differently; search
the archive for this.
Pete
–
Kernel Drivers
Windows File System and Device Driver Consulting
www.KernelDrivers.com
866.263.9295
>I would like to know from you best ways to protect the Windows registry.
I got a key that must be protected from edition and I would to know the best way to do it.
Assign an ACL to it. The default protection is more or less OK, BTW.
Please do not try to protect anything from administrator, if you think your product desires good reputation.
–
Maxim S. Shatskih
Windows DDK MVP
xxxxx@storagecraft.com
http://www.storagecraft.com
ACL the key appropriately and call it done.
Note that it is a hopeless waste of time to try and protect against an administrator using their own hardware.
-----Original Message-----
From: xxxxx@gmail.com
Sent: Tuesday, July 28, 2009 09:35
To: Windows File Systems Devs Interest List
Subject: [ntfsd] Opinion - best approach to protect windows registry
Hi folks!
It?s my first thread here.
I would like to know from you best ways to protect the Windows registry.
I got a key that must be protected from edition and I would to know the best way to do it.
Someone can share some experience with me ?
Thanks
—
NTFSD is sponsored by OSR
For our schedule of debugging and file system seminars
(including our new fs mini-filter seminar) visit:
http://www.osr.com/seminars
To unsubscribe, visit the List Server section of OSR Online at http://www.osronline.com/page.cfm?name=ListServer
Skywing wrote:
ACL the key appropriately and call it done.
Note that it is a hopeless waste of time to try and protect against an administrator using their own hardware.
‘Hopeless’ is a bit extreme … I mean it is only software.
Pete
-----Original Message-----
From: xxxxx@gmail.com
> Sent: Tuesday, July 28, 2009 09:35
> To: Windows File Systems Devs Interest List
> Subject: [ntfsd] Opinion - best approach to protect windows registry
>
>
> Hi folks!
>
> It?s my first thread here.
> I would like to know from you best ways to protect the Windows registry.
> I got a key that must be protected from edition and I would to know the best way to do it.
> Someone can share some experience with me ?
> Thanks
>
>
> —
> NTFSD is sponsored by OSR
>
> For our schedule of debugging and file system seminars
> (including our new fs mini-filter seminar) visit:
> http://www.osr.com/seminars
>
> To unsubscribe, visit the List Server section of OSR Online at http://www.osronline.com/page.cfm?name=ListServer
>
> —
> NTFSD is sponsored by OSR
>
> For our schedule of debugging and file system seminars
> (including our new fs mini-filter seminar) visit:
> http://www.osr.com/seminars
>
> To unsubscribe, visit the List Server section of OSR Online at http://www.osronline.com/page.cfm?name=ListServer
–
Kernel Drivers
Windows File System and Device Driver Consulting
www.KernelDrivers.com
866.263.9295