public class ProcessSecurity : NativeObjectSecurity{ public ProcessSecurity(SafeHandle processHandle) : base(false,ResourceType.KernelObject,processHandle,AccessControlSections.Access) { } public voID AddAccessRule(ProcessAccessRule rule) { base.AddAccessRule(rule); } // this is not a full impl- it only supports writing DACL changes public voID SaveChanges(SafeHandle processHandle) { Persist(processHandle,AccessControlSections.Access); } public overrIDe Type AccessRightType { get { return typeof(ProcessAccessRights); } } public overrIDe AccessRule AccessRuleFactory(System.Security.Principal.IDentityReference IDentityReference,int accessMask,bool isinherited,inheritanceFlags inheritanceFlags,PropagationFlags propagationFlags,AccessControlType type) { return new ProcessAccessRule(IDentityReference,(ProcessAccessRights)accessMask,isinherited,inheritanceFlags,propagationFlags,type); } public overrIDe Type AccessRuleType { get { return typeof(ProcessAccessRule); } } public overrIDe AuditRule AuditRuleFactory(System.Security.Principal.IDentityReference IDentityReference,AuditFlags flags) { throw new NotImplementedException(); } public overrIDe Type AuditRuleType { get { throw new NotImplementedException(); } }}public class ProcessAccessRule : AccessRule{ public ProcessAccessRule(IDentityReference IDentityReference,ProcessAccessRights accessMask,AccessControlType type) : base(IDentityReference,(int)accessMask,type) { } public ProcessAccessRights ProcessAccessRights { get { return (ProcessAccessRights)AccessMask; } }}[Flags]public enum ProcessAccessRights{ STANDARD_RIGHTS_required = (0x000F0000),DELETE = (0x00010000),// required to delete the object. READ_CONTRol = (0x00020000),// required to read information in the security descriptor for the object,not including the information in the SACL. To read or write the SACL,you must request the ACCESS_SYstem_Security access right. For more information,see SACL Access Right. WRITE_DAC = (0x00040000),// required to modify the DACL in the security descriptor for the object. WRITE_OWNER = (0x00080000),// required to change the owner in the security descriptor for the object. PROCESS_ALL_ACCESS = STANDARD_RIGHTS_required | SYNCHRONIZE | 0xFFF,//All possible access rights for a process object. PROCESS_CREATE_PROCESS = (0x0080),// required to create a process. PROCESS_CREATE_THREAD = (0x0002),// required to create a thread. PROCESS_DUP_HANDLE = (0x0040),// required to duplicate a handle using DuplicateHandle. PROCESS_query_informatION = (0x0400),// required to retrIEve certain information about a process,such as its token,exit code,and priority class (see OpenProcesstoken,GetExitCodeProcess,GetPriorityClass,and IsProcessInJob). PROCESS_query_liMITED_informatION = (0x1000),PROCESS_SET_informatION = (0x0200),// required to set certain information about a process,such as its priority class (see SetPriorityClass). PROCESS_SET_QUOTA = (0x0100),// required to set memory limits using SetProcessWorkingSetSize. PROCESS_SUSPEND_RESUME = (0x0800),// required to suspend or resume a process. PROCESS_TERMINATE = (0x0001),// required to terminate a process using TerminateProcess. PROCESS_VM_OPERATION = (0x0008),// required to perform an operation on the address space of a process (see VirtualProtectEx and WriteProcessMemory). PROCESS_VM_READ = (0x0010),// required to read memory in a process using ReadProcessMemory. PROCESS_VM_WRITE = (0x0020),// required to write to memory in a process using WriteProcessMemory. SYNCHRONIZE = (0x00100000),// required to wait for the process to terminate using the wait functions. }@H_301_7@ 总结 以上是内存溢出为你收集整理的有没有办法在C#中修改进程DACL全部内容,希望文章能够帮你解决有没有办法在C#中修改进程DACL所遇到的程序开发问题。
如果觉得内存溢出网站内容还不错,欢迎将内存溢出网站推荐给程序员好友。
欢迎分享,转载请注明来源:内存溢出
微信扫一扫
支付宝扫一扫
评论列表(0条)