ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.
One of a set of tools we're offering as a way to say thank you for being a part of the community.
Solved
NT/95 Registry: I can't read/write to the registry in my code when the NT/95 system is locked down or the user doesn't have admin rights
Posted on 1998-10-01
I am making updates to the system registry but when the 95/NT system I am testing on is locked down or the user I am logged in as doesn't have adminstrative rights I get a fatal error stating that I cannot access the registry. Does anyone know of a workaround for this? Are there areas in the registry that cannot be read or written to if the system is locked down or the user doesn't have administrative rights?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3 Comments
Bye the way. The code is written in VC++ 5.0 and we are using the following APIs for accessing the system registry:
RegOpenKey
RegEnumVal
RegCloseKey
RegQueryValueEx
RegQueryInfoKey
RegSetValueEx
RegFlushKey
RegOpenKey
RegEnumVal
RegCloseKey
RegQueryValueEx
RegQueryInfoKey
RegSetValueEx
RegFlushKey
Under NT, each registry key can have protections set. When you use RegOpenKeyEx, the samDesired parameter to the function specified what type of access to the key you want. (Under Win9X, this parameter is ignored) If you don't have rights to this key you will get an error returned from the function. There is no workaround, this is the way NT is designed. You either need to relax the security on the keys in question or logon to the system with an account having the correct privileges.
jhance is not entirely correct. You can get around this, but you'll have to use impersonation. It basically looks like this:
HANDLE hToken;
LogonUser( szUser, szDomain, szPassword, LOGON32_LOGON_BATCH, LOGON32_PROVIDER_DEFAULT, &hToken ););
ImpersonateLoggedOnUser( hToken );
// do stuff
CloseHandle( hToken );
RevertToSelf();
What this does is a) log on as a specific user. You'll want to log in as a user with sufficient rights and then b) tells your current thread to "impersonate" the token of the logged in user. The user logged in needs to have the SE_TCB_NAME privilege enabled. This means, of course, you'll have to either prompt the user for an appropriate user account, or you'll have to store that somewhere so you can use it behind the scenes.
Supposedly there's a way to impersonate explorer (if I recall, its security context is the system account), and I think it involves getting Explorer's process token and impersonating that, but I haven't tried it.
HANDLE hToken;
LogonUser( szUser, szDomain, szPassword, LOGON32_LOGON_BATCH, LOGON32_PROVIDER_DEFAULT, &hToken ););
ImpersonateLoggedOnUser( hToken );
// do stuff
CloseHandle( hToken );
RevertToSelf();
What this does is a) log on as a specific user. You'll want to log in as a user with sufficient rights and then b) tells your current thread to "impersonate" the token of the logged in user. The user logged in needs to have the SE_TCB_NAME privilege enabled. This means, of course, you'll have to either prompt the user for an appropriate user account, or you'll have to store that somewhere so you can use it behind the scenes.
Supposedly there's a way to impersonate explorer (if I recall, its security context is the system account), and I think it involves getting Explorer's process token and impersonating that, but I haven't tried it.
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Go is an acronym of golang, is a programming language developed Google in 2007. Go is a new language that is mostly in the C family, with significant input from Pascal/Modula/Oberon family. Hence Go arisen as low-level language with fast compilation…
Looking for a way to avoid searching through large data sets for data that doesn't exist? A Bloom Filter might be what you need. This data structure is a probabilistic filter that allows you to avoid unnecessary searches when you know the data defin…
The viewer will learn how to pass data into a function in C++. This is one step further in using functions. Instead of only printing text onto the console, the function will be able to perform calculations with argumentents given by the user.
The viewer will be introduced to the technique of using vectors in C++. The video will cover how to define a vector, store values in the vector and retrieve data from the values stored in the vector.
Suggested Courses
Course of the Month8 days, 7 hours left to enroll
598 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.