Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Moved
As you might have noticed from the silence, we have moved on. Here are blogs for Vineet, Patrick,...
Date: 06/18/2008
Folding shirts
One of the nice things of being off-site with colleagues is that you learn interesting life...
Date: 06/07/2007
Let us Test and Debug Your Application
If you happen to be at Teched (or you know someone who is) we have a room setup to test your...
Date: 06/05/2007
Integrity Level and the ROT
Integrity Levels result in surprising behavior. The other day I was looking at an accessibility...
Date: 06/04/2007
Signed Binaries in Non-trusted Locations
When you inadvertently copy the complete cmd.exe to your quick launch bar instead of creating a...
Date: 06/04/2007
Is my Process Virtualized or Redirected?
In some scenarios it might be necessary to know whether a process is actually being redirected or...
Date: 04/30/2007
Debugging LSASS
For some reason I had to debug LSASS (Local Security Authority Process) recently. Considering that...
Date: 04/25/2007
Certification Freebie
I had mentioned in a previous post about handy certification tools. If that sparked your interest in...
Date: 04/23/2007
GetCurrentProcess fails on Net 1.1 on Vista
This little snippet compiled with .Net 1.1: using System; using System.Diagnostics; class Program...
Date: 04/17/2007
C2065: 'TOKEN_LINKED_TOKEN' : undeclared identifier
If you get error C2065: 'TOKEN_LINKED_TOKEN' : undeclared identifier when you try to compile...
Date: 04/17/2007
SetThreadPriority from Run key
If you add an application to the Run key in the registry...
Date: 04/12/2007
Vista Certification Testing Tools
In the lab we get a lot of questions about the Vista Certification logo program. There are two...
Date: 04/06/2007
Very informative UAC blog post from Mark Russinovich
In his blog post "PsExec, User Account Control and Security Boundaries" Mark Russinovich shares some...
Date: 02/15/2007
Internet Explorer caches settings
In the LoRIE doc for developers, it is mentioned that you can register your application as a broker...
Date: 02/07/2007
Creating System DSNs on Vista
As stated in the MSDN article that all Keys under HKLM\Software are virtualized, there is still the...
Date: 02/07/2007
SHGetKnownFolderPath and the KNOWNFOLDERID
In Vista the CSIDL as used in SHGetFolderPath are no longer the way to go. The recommended APIs such...
Date: 01/30/2007
Icons in 16 bit applications on Vista
As mentioned in the cookbook, 16 bit applications are not going to work on 64 bit Vista. This is...
Date: 01/24/2007
IPHelper API for kernel mode
The Cookbook mentions Networking: Kernel Mode IP Helper APIs. If you wonder where you can find them,...
Date: 12/14/2006
The manifest and the resource
When you add a manifest you need to make sure that you give it the right resource type. If for some...
Date: 12/07/2006
Creating a COM component returns ERROR_MORE_DATA
Under Vista you might get this error when you create a COM component (800700EA ERROR_MORE_DATA)....
Date: 12/06/2006
Manifest and the fusion cache
When you have an application without a manifest and you try to elevate it with an external manifest,...
Date: 11/13/2006
Mark and Manmeet on .Net Show
Mark and Manmeet appeared on the .Net show last week. Enjoy:...
Date: 10/24/2006
MSI uninstall gives unsigned dialog
This week we again had the honor of getting the expert advise of one of the Windows Installer PMs...
Date: 10/20/2006
rundll32.exe appwiz.cpl,NewlInkHere is back
For some reason it was quite common to use an undocumented (and hence unsupported and...
Date: 10/20/2006
Session 0 isolation, COM and COM+
Session 0 isolation is not limited to NT services. It also applies to COM+ server applications and...
Date: 10/20/2006
Impact of Least Privilege in System Services
Of all security changes in Vista, UAC with its spit token and MIC is for obvious reasons getting...
Date: 10/19/2006
Per-User COM on Vista for elevated token processes
Per-user COM in Vista (where CLSIDs, etc. go under HKCU\Software\Classes instead of...
Date: 10/17/2006
Why you don't want to launch a process with a filtered token from a full token
Our team works extensively with ISVs on Vista application compatibility – porting XP applications to...
Date: 10/10/2006
Command line application with manifest asInvoker
The recommendation for command line applications is to use requestedExecutionLevel=asInvoker in the...
Date: 10/05/2006
Elevation and process creation APIs
In Vista, process creation APIs behave very differently with respect to UAC. If you call...
Date: 10/02/2006
CoCreateInstanceAsAdmin or CreateElevatedComObject sample
The COM elevation moniker is one of the three recommended ways to have a user application do tasks...
Date: 09/28/2006
Elevate through ShellExecute
We often get the question how to elevate a process through ShellExecute. From the docs it is not...
Date: 09/25/2006
UAC and Remote logon
Just noticed that there is a solid document on UAC here:...
Date: 09/22/2006
MIC and saving files
UAC has something called Mandatory Integrity Control or MIC. It is a security enhancement that is...
Date: 09/01/2006
000006c6 in NdrClientCall2
Security got a lot of attention in Vista. UAC, LoRIE, Session 0 isolation are all prime examples....
Date: 09/01/2006
Access Violation in SHGetDesktopFolder
We found an interesting issue the other day when a call to SHGetFileInfo crashed with an Access...
Date: 09/01/2006
Introduction
This blog is maintained by a group of consultants from the Microsoft's US Enterprise Services - ISV...
Date: 09/01/2006