TAILIEUCHUNG - Network Security Foundations phần 6

mà có thể sửa chữa các tham nhũng gây ra bởi một loại virus cụ thể. Một số virus cũng có thể gây ra thiệt hại trên diện rộng như vậy mà chương trình gỡ bỏ virus đặc biệt được yêu cầu loại bỏ hoàn toàn chúng. Nếu đây là trường hợp, máy quét virus của bạn sẽ cho bạn biết rằng đó là không thể để loại bỏ một vi rút. | Windows Security 153 Resource Access Whenever a program is started in Windows the program that launches it usually Windows Explorer provides it with an access token based on its own access token. This way every program has an access token that will always match the identity of the person who originally logged in and it can then provide the access token to the system in order to gain access to secured resources. The forwarded access token is a copy of the one originally passed to Windows Explorer by the WinLogon process. The WinLogon process was started from a user-generated interrupt the Ctrl Alt Del keyboard interrupt and is special in that it does not inherit an access token from its parent process rather it can create new access tokens by querying either the local Security Accounts Manager or the NetLogon Service which in turn queries the Directory Services Agent DSA on an Active Directory domain controller or the SAM on a Windows NT domain controller. The WinLogon process and the Run As service are the only processes that are able to create access tokens. Windows Explorer The shell program in Windows from which most user-mode programs are launched. Directory Services Agent DSA The service that communicates between the Local Security Authority and the Active Directory in order to authenticate domain users. 154 Chapter 10 Mandatory Logons The foundation of Windows security is the mandatory login. Unlike in some networking systems there is no way for a user to do anything in Windows without a user account name and password. Although you can choose to automatically log in with credentials provided from the Registry a user account logon still occurs. Although it s not the friendliest of keystrokes there s a very good reason Windows requires the Ctrl Alt Del keystroke to log in and it s one of the reasons Windows is considered secure. Because the computer handles the Ctrl Alt Del keystroke as a hardware interrupt there s literally no way to for a clever programmer to

Đã phát hiện trình chặn quảng cáo AdBlock
Trang web này phụ thuộc vào doanh thu từ số lần hiển thị quảng cáo để tồn tại. Vui lòng tắt trình chặn quảng cáo của bạn hoặc tạm dừng tính năng chặn quảng cáo cho trang web này.