sorted by: recent | see :
popular
Content Tagged with Lua + Security
PsExec - use to lower rights
To run Internet Explorer as with limited-user privileges use this command:
psexec -l -d "c:\program files\internet explorer\iexplore.exe"
lua-users wiki: Sand Boxes
Shows how to put Lua in a sand box. Lists functions that are safe and others that are not.
Windows Administration: Problems of Privilege: Find and Fix LUA Bugs
anticipated problems and there are a number of issues you should be aware of. The credentials are not tied to any one shortcut; once the credentials have been saved they can be used to start any app. While the password is securely encrypted with a user-specific key, it will still be decrypted in the user’s security context and briefly exposed. And the /savecred option is not available on Windows XP Home Edition.
Benefits: With this approach, you are able to avoid always running everything as admin. Unfortunately, that’s about the only benefit for this one.
Drawbacks: Running an application with elevated privileges is much riskier than any of the other options I’ve already described. It’s very difficult to defend a system against a malicious user or a malicious app when there’s an application running as admin. H
Aaron Margosis' "Non-Admin" WebLog
Aaron Margosis' "Non-Admin" WebLog
Suspekt... " Blog Archive " Mysql-Proxy Heuristic SQL Injection Detection
This is interesting in many aspects. Using Lua, and Proxy, it attempts to detect if you're seeing an SQL injection, and if so, reports back...
LUA Buglight
LUA Buglight is a tool that is designed to help both developers and IT Pros (sysadmins) identify the specific causes of "LUA bugs" in desktop applications running on Windows XP, Windows Server 2003, or Windows Vista.
Page 1 | Next >>
