确定iexplore.exe进程的安全区域
[英]Determine security zone of iexplore.exe process
问题描述
Internet Explorer launches Intranet and Trusted sites each in a separate iexplore.exe process running at Medium Integrity level. 
Internet Explorer在中等完整性级别运行的单独iexplore.exe进程中分别启动Intranet和可信站点。
Is there a way to determine the specific security zone of an iexplore.exe process? 有没有办法确定iexplore.exe进程的特定安全区域?
I am working on a Task Manager tool and would like to distinguish iexplore.exe processes between the various security zones Restricted, Internet, Intranet and Trusted. 我正在使用“任务管理器”工具,并且想在受限制的,Internet,Intranet和Trusted的各个安全区域之间区分iexplore.exe进程。
1 个解决方案
解决方案1
0 2015-05-02 07:13:06
I believe you are looking for the IInternetSecurityManager::MapUrlToZone method. 我相信您正在寻找IInternetSecurityManager :: MapUrlToZone方法。 Yes, it's C++ and, yes, it's, er... complicated . 是的,它是C ++,是的,是... 复杂 。
Update, based on the comment: 根据评论更新:
Security zones are URL-based; 安全区域是基于URL的; process isolation is more to do with protected mode, integrity levels, and AppContainer permissions. 进程隔离与保护模式,完整性级别和AppContainer权限有关。 Not all details are available through public APIs for security reasons. 出于安全原因,并非所有详细信息都可以通过公共API获得。
IIRC, the short answer you're looking for involve searching access tokens for specific SIDs (security descriptors) ( context here ). IIRC,您要寻找的简短答案包括在访问令牌中搜索特定的SID (安全描述符)( 此处为上下文 )。 But, that's going to need further context to fully understand. 但是,这需要进一步的上下文才能完全理解。 You'll want to read the full collection of articles and then backfill some of the details using EricLaw's highly detailed backgrounders . 您需要阅读完整的文章集,然后使用EricLaw的详细 背景资料回填一些细节。 (That's two separate links, BTW). (这是两个单独的链接,顺便说一句)。
If searching for the SID doesn't lead you to the answer you're looking for, the larger collection of related "how-to" tasks may help . 如果搜索SID不能使您找到所需的答案,则更多相关的“操作方法”任务可能会有所帮助 。
Hope this helps... 希望这可以帮助...
-- Lance -兰斯
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.