Support non-Admin Apps #24
Labels
feature request
New feature or request
security
Not for reporting vulnerabilities. ACLs, defense-in-depth, etc.
Milestone
Comments
|
Adding to V1: we should support non-admin apps, either by allowing processes to acquire a privilege/capability or test for some other process SID. |
mtfriesen
added
the
security
|
Should we have a separate issue tracking (possibly) supporting completely unprivileged apps being able to use XDP to bypass their own socket? |
|
Yeah, it's a topic that comes up often enough that we should have a dedicated issue. I'm not sure where such a policy would actually get implemented (ideally XDP actually has little or nothing to do with such policy decisions) but this repo would at least expose the end-to-end scenario, so it is a natural place to track the feature. |
|
Filed #249 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In order to get more wide-spread usage of XDP for Windows, we should see if it's possible for a non-Admin app to use this interface. It's really a pretty big security issue if an app that upgrades to using XDP now has to run as an admin. What if it has a bug, and it's exploitable over the network? Now the attacker gets admin access. FWIW, I thought about this while reading an article about the large number of cloud attacks/bugs that have happened over the last few months, and I don't want to introduce any new issues here.
The text was updated successfully, but these errors were encountered: