windows - create process in user session from service -



windows - create process in user session from service -

i trying create service create process in opened session in windows. have code:

sessionid =wtsgetactiveconsolesessionid(); if (wtsqueryusertoken(sessionid,&dummy)) { if (!duplicatetokenex(dummy, token_all_access, null, securitydelegation, tokenprimary, &token)) { closehandle(dummy); homecoming false; } closehandle(dummy); // create process user desktop myfile = fopen("c:\\temp\\test123.txt", "a"); fprintf(myfile, "before create!!!!\n"); fclose(myfile); if (!createprocessasuser(token, null,null, null, null, false, create_new_console, null, null, &si, &pi)) { // "new console" necessary. otherwise process can hang our main process closehandle(token); myfile = fopen("c:\\temp\\test123.txt", "a"); fprintf(myfile, " create failed!\n"); fclose(myfile); homecoming false; } closehandle(token); } else { myfile = fopen("c:\\temp\\test123.txt", "a"); fprintf(myfile, "dummy fail\n"); fprintf(myfile, "last error %d \n", getlasterror()); fclose(myfile); } //int ret = createprocess(file_exec, null, null, null, false, 0, null, null, &si, &pi);

if utilize lastly lin e(that commented) in install of service works fine because runs when service been installed happens within user session when want service it fails, sessionid ok, failure starts @ :

if (wtsqueryusertoken(sessionid,&dummy)) {

i know wtsqueryusertoken function should run service, sessionid 1 (and real number cmd check) , dummy suppose hold user token after reason fails.... ideas?

i utilize code similar yours in own service , works fine. there things need taken business relationship code showed not doing:

when calling wtsqueryusertoke(), have create sure service process has se_tcb_name privilege enabled. utilize adjusttokenprivileges() that.

the session id returned wtsgetactiveconsolesessionid() may not right session need run spawned process on! returns session id attached physical console (screen/keyboard/mouse) of local machine, if any. session may displaying secure winlogon desktop, meaning no user logged in physical machine, calling wtsqueryusertoken() on session id fail error_no_token error. user can log in on remote desktop connection, instance, in case connection running in different session console. if want spawned process run in session has user logged in, need utilize wtsenumeratesessions() find session in wtsactive state. , then, wtsqueryusertoken() may not homecoming token depending on how user logged in, need phone call wtsqueryusertoken() on each active session find until find 1 gives token.

when calling duplicatetokenex(), utilize securityidentification instead of securitydelegation.

when calling createprocessasuser(), can phone call createenvironmentblock() first create environment appropriate specific user , pass pointer createprocessasuser(). otherwise, spawned process utilize service's environment instead. step optional, depending on particular needs of spawned app.

windows winapi service

Comments

Post a Comment

Popular posts from this blog

Delphi change the assembly code of a running process -

Delphi change the assembly code of a running process - i'm trying alter address 00741fa5 has push test.009e721c . alter push test.009e71c8 . procedure callback; asm force $9e71c8 end; procedure tform2.btn1click(sender: tobject); var ppid :dword; pprocess : cardinal; begin getwindowthreadprocessid(findwindow(nil,pchar('test')), @ppid); pprocess := openprocess(process_all_access, false, ppid); injectasm(pprocess, $741fa5, 10, integer(@callback), 0); end; here injectasm function (with error checking) function injectasm(process: longword; injectaddress, injectsize, codeaddress, codesize : integer): pointer; var csize, rsize : integer; replaced : array of byte; jmp : array [0..4] of byte; jmpaddress : integer; nopv : byte; : integer; nbr: ulong_ptr; begin //injectsize must equal or greater 5, because need space our //(far) jmp wwxxyyzz instruction //if there's no space, inject in place of few instructions if injectsize ...
Read more

json - Hibernate and Jackson (java.lang.IllegalStateException: Cannot call sendError() after the response has been committed) -

json - Hibernate and Jackson (java.lang.IllegalStateException: Cannot call sendError() after the response has been committed) - hello have problem hibernate , jackson. have 2 pojos @entity @table(name = "users") public class user implements serializable { static final long serialversionuid = 4235637833262722256l; @id @generatedvalue private int id; @column(name = "creation_date") private date creationdate; @column(name = "first_name") private string firstname; @column(name = "last_name") private string lastname; @version @column(name = "version") private int version; @column(name = "e_mail") private string email; @column(name = "enabled") private boolean enabled; @column(name = "login") private string login; @column(name = "password") private string password; @jsonmanagedreference("role") @onetomany(mappedby = "user", cascade = cascadetype.all,fetch = fetchtyp...
Read more

C++ 11 "class" keyword -

C++ 11 "class" keyword - i've started using c++ 11 little bit more , have few questions on special uses of class keyword. know it's used declare class, there's 2 instances have seen don't understand: method<class t>(); and class class_name *var; why precede typename keyword class in first example, , keyword pointer in sec example? that known elaborated type specifier , necessary when class name "shadowed" or "hidden" , need explicit. class t { }; // love of god don't t t; t t2; if compiler smart, give these warnings: main.cpp:15:5: error: must utilize 'class' tag refer type 't' in scope t t2; ^ class main.cpp:14:7: note: class 't' hidden non-type declaration of 't' here t t; ^ if class not defined, deed forwards declaration. for example: template <typename t> void method() { using type = typename t::value_type; } method...
Read more