book

Microsoft® Windows® 2000 Security Handbook

by Jeff Schmidt

August 2000

Intermediate to advanced

800 pages

21h 5m

English

Que

Read now

Unlock full access

Content preview from Microsoft® Windows® 2000 Security Handbook

Securing Objects

At the heart of the Windows 2000 security model are Security Descriptors (SDs) and Access Control Lists (ACLs). Every securable object (files, devices, pipes, processes, threads, timers, printers, you name it) has a security descriptor attached to it. A security descriptor contains the following pieces of information:

The SID of the object owner
The SID of the primary owning group
Discretionary Access Control List (DACL)
System Access Control List (SACL)

WINNT.H, which is included in the Windows SDK, contains the SECURITY_DESCRIPTOR structure, as well as a brief explanation of the fields:

 typedef struct _SECURITY_DESCRIPTOR { BYTE Revision; BYTE Sbz1; SECURITY_DESCRIPTOR_CONTROL Control; PSID Owner; PSID Group; PACL Sacl; PACL ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Windows Server® 2008 Security Resource Kit

Jesper M. Johansson

Windows Server® 2008 Active Directory® Resource Kit

Conan Kezema Stan Riemer Mike Mulcare, Byron Wright, and Microsoft Active Directory

Microsoft® Windows® Internals: Microsoft Windows Server™ 2003, Windows XP, and Windows 2000, 4th Edition

Mark E. Russinovich, David A. Solomon

Microsoft Internet Information Services 7.0

Microsoft, Inc.

Publisher Resources

ISBN: 0789719991Purchase book